Related Concepts
Definition
A Web Security Audit is a process of checking if a Web architecture or object is vulnerable or if it is being hacked or exploited by an attacker.
Background
With the proliferation of Web architectures and applications, mostly developed with an eye for ready-to-market needs rather than security, the number of targets to attack is increasing dramatically. A superset of audit tasks, targeted to the Web space, is thus required.
Theory
A security audit can be performed at various levels. It can address high level aspects of security (process, policies, procedures) all the way down to the most technical details, the former being related to organizational aspects and the latter to architecture.
Web security audits can be performed on the following targets:
- 1.
Web architecture. In this case, a security auditor evaluates the architecture diagram, including all...
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsRecommended Reading
COBIT 4.1 IT audit standard. Available at http://www.isaca.org
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer Science+Business Media, LLC
About this entry
Cite this entry
Forte, D.V., Forte, D.V. (2011). Web Security Auditing. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_667
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5906-5_667
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5905-8
Online ISBN: 978-1-4419-5906-5
eBook Packages: Computer ScienceReference Module Computer Science and Engineering