NORMA eResearch @NCI Library

An Analytic Approach to Improve Security Features of Web Application using Freeware WAF

Jadhav, Akshay Satish (2023) An Analytic Approach to Improve Security Features of Web Application using Freeware WAF. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
PDF (Master of Science)
Download (683kB) | Preview
[thumbnail of Configuration manual]
Preview
PDF (Configuration manual)
Download (2MB) | Preview

Abstract

In recent years utilization of web applications has increased rapidly in comparison to past decades. Web Applications are being used by various businesses, organizations and on individual level as means of sharing information or for enhancing their business strategies. On the other hand, due to its rapid increase in utilization web applications are more prone to various attacks and threats. So, to overcome from these attacks modern business inculcates various security measures one of which is deploying Web Application Firewall (WAF) to protect the Web application because it is more capable of filtering the packets and blocking vulnerable HTTP packets. This is the focus of the research to implement Web Application Firewall (WAF) and reverse proxy method on web-based application. Second Focus is to compare, analysis and draw conclusion from the different scanner results to predict at what extent Web application firewall (WAF) protect the application from getting attacked. As per the Experiments carried out throughout the research it was seen that Shadow Daemon WAF with its custom rulesets for the web application and reverse proxy method plays an important role in preventing different attacks on web application.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Moldovan, Arghir-Nicolae
UNSPECIFIED
Uncontrolled Keywords: Web Application Security; Web Application Firewall (WAF); Shadow Daemon WAF; Reverse Proxy Method; Scanner Tools
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Z Bibliography. Library Science. Information Resources > ZA Information resources > ZA4150 Computer Network Resources > The Internet > World Wide Web
T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Telecommunications > The Internet > World Wide Web
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Tamara Malone
Date Deposited: 28 Apr 2023 15:21
Last Modified: 28 Apr 2023 15:21
URI: https://norma.ncirl.ie/id/eprint/6522

Actions (login required)

View Item View Item