html5-img
1 / 16

Online Book store

Online Book store. Course Name: Web Security Project 1 Presented by Amruta Raichurkar Videhi Patel. Overview. Design Workflow Potential vulnerabilities. Design. 3 tier structure UML sequence diagram. Workflow. As user As administrator. Login. Registration. Home.

mechelle-george
Télécharger la présentation

Online Book store

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Online Book store Course Name: Web Security Project 1 Presented by Amruta Raichurkar Videhi Patel

  2. Overview • Design • Workflow • Potential vulnerabilities

  3. Design • 3 tier structure • UML sequence diagram

  4. Workflow • As user • As administrator

  5. Login

  6. Registration

  7. Home

  8. Book Description

  9. Cart

  10. Edit Book Information

  11. Database • Tables - Members - Categories - Items - Orders - Card Types

  12. Potential Vulnerabilities • Cross Site scripting(XSS) Act of writing malicious scripting code and tricking another users web Browser into running it using third party’s web server. It attempts to steal a cookie value of user’session and use it to log into the website. <b>foo</b> <script language =‘javascript’> alert(document.cookie)</script>

  13. Potential Vulnerabilities • Impersonating user or system Malicious user acts as a legal receiver for the packet and steals it. The destined receiver does not get a copy of this packets.

  14. Tools • J2SE 1.4.2 • Tomcat 4.1 • Mysql 4.1

  15. References • Java – How to Program -Deitel & Deitel • Web Development with Java Server Pages -Duane K. Fields, Mark A. Kolb • www.java.sun.com

  16. Thank You

More Related