Ασφάλεια διαδικτυακών εφαρμογών με τη χρήση του πλαισίου .NET
Web application security using .NET framework
Πριάρης, Δημήτριος Ν.
SubjectComputer networks -- Security measures ; Web servers -- Security measures ; Microsoft .NET Framework
This thesis is concerned with web application security and more specifically with the study of the security technologies offered by the .NET framework. From the perspective of the web designers and developers, web application security includes the analysis of the security requirements at several layers, such as the web server, the application and the database server. Initially, the fundamental security requirements of the web applications are presented. Then, the most important security threats against web applications are analyzed, according to the STRIDE model. Furthermore, an analysis of the security libraries and security technologies of the .NET framework are presented; for each examined security service, the alternative security technologies offered by the .NET framework are analyzed. In the final stage of this thesis, a test web application was developed using the .NET framework, in which several security technologies are applied, in order to meet the security requirements set from the analysis phase.