Finding security bugs in web applications using a catalog of access control patterns.
Joseph P. NearDaniel JacksonPublished in: ICSE (2016)
Keyphrases
- access control
- web applications
- security policies
- data security
- security mechanisms
- application development
- security requirements
- security model
- dynamic access control
- security architecture
- role based access control
- access control policies
- application developers
- end users
- web services
- database security
- unauthorized access
- access control mechanism
- access control models
- access control systems
- source code
- security vulnerabilities
- database
- database management systems
- databases
- website
- relational databases
- data model
- software development