alexa A Study of the Effectiveness of CSRF Guard
Engineering

Engineering

Journal of Information Technology & Software Engineering

Author(s): Boyan Chen, Pavol Zavarsky, Ron Ruhl, Dale Lindskog

Abstract Share this page

OWASP (Open Web Application Security Project) CSRF Guard is a mitigation strategy designed to protect against Cross-Site Request Forgery (CSRF) attacks. CSRF, also known as one-click attack or session riding, is one of the most dangerous threats against web applications. The consequence of successful CSRF exploit could result in disclosure of private information, unauthorized modification of sensitive data and disruption of web service. This paper explores the following: (1) how CSRF Guard is able or unable to block CSRF attempts through the use of threat models, (2) possible limitations of the CSRF Guard, and (3) possible scenarios where the CSRF Guard is recommended as a mitigation strategy. This paper can assist web developers and researchers to improve current CSRF defense systems or develop new strategies in the futures.

This article was published in Privacy, Security, Risk and Trust (PASSAT) and 2011 IEEE Third Inernational Conference on Social Computing (SocialCom) and referenced in Journal of Information Technology & Software Engineering

Relevant Expert PPTs

Relevant Speaker PPTs

Recommended Conferences

Peer Reviewed Journals
 
Make the best use of Scientific Research and information from our 700 + peer reviewed, Open Access Journals
International Conferences 2017-18
 
Meet Inspiring Speakers and Experts at our 3000+ Global Annual Meetings

Contact Us

 
© 2008-2017 OMICS International - Open Access Publisher. Best viewed in Mozilla Firefox | Google Chrome | Above IE 7.0 version
adwords