Seven Business Logic Flaws that put your Website at Risk - Harvard (07062008)

50 %
50 %
Information about Seven Business Logic Flaws that put your Website at Risk - Harvard...

Published on August 9, 2008

Author: jeremiahgrossman



Session handling, credit card transactions, and password recovery are just a few examples of Web-enabled business logic processes that malicious hackers have abused to compromise major websites. These types of vulnerabilities are routinely overlooked during QA because the process is intended to test what a piece of code is supposed to do and not what it can be made to do. The other problem(s) with business logic flaws is scanners can’t identify them, IDS can’t detect them, and Web application firewalls can’t defend them. Plus, the more sophisticated and Web 2.0 feature-rich a website, the more prone it is to have flaws in business logic.

Seven Business Logic Flaws that put your Website at Risk Jeremiah Grossman WhiteHat Security founder & CTO © 2008 WhiteHat Security, Inc. 1

2 Jeremiah Grossman • WhiteHat Security Founder & CTO • Technology R&D and industry evangelist (recently named to named to InfoWorld's CTO 25 List) • Frequent international conference speaker • Co-founder of the Web Application Security Consortium • Co-author: Cross-Site Scripting Attacks • Former Yahoo! information security officer © 2008 WhiteHat Security, Inc. 2

Add a comment

Related pages

Harvard Business Review - Ideas and Advice for Leaders

The Seven Imperatives to Keeping Meetings on Track. ... practical management advice to help you do your job better, ... Harvard Business Review;
Read more

Web Security Basics - Beyond Security - Vulnerability ...

Web sites are prone to security risks. A website with weak security opens your ... Your Greatest Web Security Risks: ... it is simple logic to also lock ...
Read more

Essay Structure | - Harvard College Writing Center

Essay Structure ... Structuring your essay according to a reader's logic means examining your thesis and anticipating ... Harvard Guide to ...
Read more

Boston - OWASP

... risk factors, but also the business ... Boston Cloud Services meetup page if you ... Business Logic Flaws: How they put your ...
Read more

GMO LLC - Home

... you will gain access to areas of GMO's ... Our sole business is ... please register with our website. Registering also gives you access to ...
Read more

Resources - WhiteHat Security - The Front Line Of ...

... How to Evaluate Business Risk and Set Your Security Program Up ... lists the top 7 reasons why an organization would choose WhiteHat Security. ...
Read more

Case Questions –

Case Questions. FAQ; Cases; Case ... way for consulting firms to test your ... of the top MBA consulting clubs including Harvard Business ...
Read more

Cybercrime - The Definition of Cybercrime | Norton

What is Cybercrime? Cybercrime is a bigger risk ... As you can see, cybercrime ... Hackers often carry out Type 1 cybercrime by taking advantage of flaws ...
Read more