The Experts below are selected from a list of 31344 Experts worldwide ranked by ideXlab platform
Richard Sharp - One of the best experts on this subject based on the ideXlab platform.
-
Specifying and enforcing Application-Level Web security policies
IEEE Transactions on Knowledge and Data Engineering, 2003Co-Authors: David Scott, Richard SharpAbstract:Application-Level Web security refers to vulnerabilities inherent in the code of a Web-Application itself (irrespective of the technologies in which it is implemented or the security of the Web-server/back-end database on which it is built). In the last few months, Application-Level vulnerabilities have been exploited with serious consequences: Hackers have tricked e-commerce sites into shipping goods for no charge, usernames and passwords have been harvested, and confidential information (such as addresses and credit-card numbers) has been leaked. We investigate new tools and techniques which address the problem of Application-Level Web security. We 1) describe a scalable structuring mechanism facilitating the abstraction of security policies from large Web-Applications developed in heterogeneous multiplatform environments; 2) present a set of tools which assist programmers in developing secure Applications which are resilient to a wide range of common attacks; and 3) report results and experience arising from our implementation of these techniques.
-
abstracting Application Level web security
The Web Conference, 2002Co-Authors: David Scott, Richard SharpAbstract:Application-Level web security refers to vulnerabilities inherent in the code of a web-Application itself (irrespective of the technologies in which it is implemented or the security of the web-server/back-end database on which it is built). In the last few months Application-Level vulnerabilities have been exploited with serious consequences: hackers have tricked e-commerce sites into shipping goods for no charge, user-names and passwords have been harvested and condential information (such as addresses and credit-card numbers) has been leaked.In this paper we investigate new tools and techniques which address the problem of Application-Level web security. We (i) describe a scalable structuring mechanism facilitating the abstraction of security policies from large web-Applications developed in heterogenous multi-platform environments; (ii) present a tool which assists programmers develop secure Applications which are resilient to a wide range of common attacks; and (iii) report results and experience arising from our implementation of these techniques.
-
WWW - Abstracting Application-Level web security
Proceedings of the eleventh international conference on World Wide Web - WWW '02, 2002Co-Authors: David Scott, Richard SharpAbstract:Application-Level web security refers to vulnerabilities inherent in the code of a web-Application itself (irrespective of the technologies in which it is implemented or the security of the web-server/back-end database on which it is built). In the last few months Application-Level vulnerabilities have been exploited with serious consequences: hackers have tricked e-commerce sites into shipping goods for no charge, user-names and passwords have been harvested and condential information (such as addresses and credit-card numbers) has been leaked.In this paper we investigate new tools and techniques which address the problem of Application-Level web security. We (i) describe a scalable structuring mechanism facilitating the abstraction of security policies from large web-Applications developed in heterogenous multi-platform environments; (ii) present a tool which assists programmers develop secure Applications which are resilient to a wide range of common attacks; and (iii) report results and experience arising from our implementation of these techniques.
David Scott - One of the best experts on this subject based on the ideXlab platform.
-
Specifying and enforcing Application-Level Web security policies
IEEE Transactions on Knowledge and Data Engineering, 2003Co-Authors: David Scott, Richard SharpAbstract:Application-Level Web security refers to vulnerabilities inherent in the code of a Web-Application itself (irrespective of the technologies in which it is implemented or the security of the Web-server/back-end database on which it is built). In the last few months, Application-Level vulnerabilities have been exploited with serious consequences: Hackers have tricked e-commerce sites into shipping goods for no charge, usernames and passwords have been harvested, and confidential information (such as addresses and credit-card numbers) has been leaked. We investigate new tools and techniques which address the problem of Application-Level Web security. We 1) describe a scalable structuring mechanism facilitating the abstraction of security policies from large Web-Applications developed in heterogeneous multiplatform environments; 2) present a set of tools which assist programmers in developing secure Applications which are resilient to a wide range of common attacks; and 3) report results and experience arising from our implementation of these techniques.
-
abstracting Application Level web security
The Web Conference, 2002Co-Authors: David Scott, Richard SharpAbstract:Application-Level web security refers to vulnerabilities inherent in the code of a web-Application itself (irrespective of the technologies in which it is implemented or the security of the web-server/back-end database on which it is built). In the last few months Application-Level vulnerabilities have been exploited with serious consequences: hackers have tricked e-commerce sites into shipping goods for no charge, user-names and passwords have been harvested and condential information (such as addresses and credit-card numbers) has been leaked.In this paper we investigate new tools and techniques which address the problem of Application-Level web security. We (i) describe a scalable structuring mechanism facilitating the abstraction of security policies from large web-Applications developed in heterogenous multi-platform environments; (ii) present a tool which assists programmers develop secure Applications which are resilient to a wide range of common attacks; and (iii) report results and experience arising from our implementation of these techniques.
-
WWW - Abstracting Application-Level web security
Proceedings of the eleventh international conference on World Wide Web - WWW '02, 2002Co-Authors: David Scott, Richard SharpAbstract:Application-Level web security refers to vulnerabilities inherent in the code of a web-Application itself (irrespective of the technologies in which it is implemented or the security of the web-server/back-end database on which it is built). In the last few months Application-Level vulnerabilities have been exploited with serious consequences: hackers have tricked e-commerce sites into shipping goods for no charge, user-names and passwords have been harvested and condential information (such as addresses and credit-card numbers) has been leaked.In this paper we investigate new tools and techniques which address the problem of Application-Level web security. We (i) describe a scalable structuring mechanism facilitating the abstraction of security policies from large web-Applications developed in heterogenous multi-platform environments; (ii) present a tool which assists programmers develop secure Applications which are resilient to a wide range of common attacks; and (iii) report results and experience arising from our implementation of these techniques.
Xindong Wu - One of the best experts on this subject based on the ideXlab platform.
-
Robust Application-Level QoS Management in Service-Oriented Systems
2008 IEEE International Conference on e-Business Engineering, 2008Co-Authors: Qianhui Liang, Xindong WuAbstract:Quality of service (QoS) in Web services has been an active research topic in service-oriented Applications. This paper presents a framework for Application-Level QoS management in services-oriented systems using AI techniques. More precisely, we introduce a management layer, called the business end-user QoS management layer, to be in charge of QoS management at the Application Level of the Applications based on composite Web services. This management layer relies on the measurements against various QoS dimensions of constituent Web services of such Applications. A robust algorithm is applied in order to select the most suitable Web services that satisfy the user QoS requirements in a robust way. The effectiveness of the proposed algorithm for this layer of QoS management is demonstrated by experimental results.
Sylvia Ratnasamy - One of the best experts on this subject based on the ideXlab platform.
-
Application Level multicast using content addressable networks
Lecture Notes in Computer Science, 2001Co-Authors: Sylvia Ratnasamy, Mark Handley, Richard M Karp, Scott ShenkerAbstract:Most currently proposed solutions to Application-Level multicast organise the group members into an Application-Level mesh over which a Distance-Vector routing protocol, or a similar algorithm, is used to construct source-rooted distribution trees. The use of a global routing protocol limits the scalability of these systems. Other proposed solutions that scale to larger numbers of receivers do so by restricting the multicast service model to be single-sourced. In this paper, we propose an Application-Level multicast scheme capable of scaling to large group sizes without restricting the service model to a single source. Our scheme builds on recent work on Content-Addressable Networks (CANs). Extending the CAN framework to support multicast comes at trivial additional cost and, because of the structured nature of CAN topologies, obviates the need for a multicast routingalg orithm. Given the deployment of a distributed infrastructure such as a CAN, we believe our CAN-based multicast scheme offers the dual advantages of simplicity and scalability.
Bharath Radhakrishnan - One of the best experts on this subject based on the ideXlab platform.
-
Survey on Application Level Tools for SSD Benchmark Validation
2013 UKSim 15th International Conference on Computer Modelling and Simulation, 2013Co-Authors: Ravi Shankar Reddy Pasnoori, Haritima Swapnil, Bharath RadhakrishnanAbstract:SSD (Solid State Drives) Testing can be broadly divided into Device Level testing and Application Level testing. Application Level testing aims at validating the performance of the SSD in real world scenarios. There are multiple Application Level benchmark tools available in the market to carry out the testing at the Application Level. Each tool has various Applications but at the same time they may lack few features. In this paper, we present the comparison result of various tools that we used for SSD Application Level testing. The aim of this paper is to produce one stop solution for the end user to pick a particular tool for SSD validation of a specific Application that is to be used on the device.
-
UKSim - Survey on Application Level Tools for SSD Benchmark Validation
2013 UKSim 15th International Conference on Computer Modelling and Simulation, 2013Co-Authors: Ravi Shankar Reddy Pasnoori, Haritima Swapnil, Bharath RadhakrishnanAbstract:SSD (Solid State Drives) Testing can be broadly divided into Device Level testing and Application Level testing. Application Level testing aims at validating the performance of the SSD in real world scenarios. There are multiple Application Level benchmark tools available in the market to carry out the testing at the Application Level. Each tool has various Applications but at the same time they may lack few features. In this paper, we present the comparison result of various tools that we used for SSD Application Level testing. The aim of this paper is to produce one stop solution for the end user to pick a particular tool for SSD validation of a specific Application that is to be used on the device.
