A Review on Web Security Mechanism Performance Evaluation Using Vulnerability and Attack Injection

M.S. Patole, Sagar D. Kothimbire

Abstract: In this method a tool is designed to evaluate the performance of web security mechanisms. The system is based on the idea that injecting realistic vulnerabilities in a web application and attacking them automatically. This can be used to support the assessment of existing security mechanisms and tools in custom setup scenarios. To provide real to life results, the stated vulnerability and attack injection methodology relies on the study of a large number of vulnerabilities in real web applications. In this method a tool is designed for automation of entire process called Vulnerability and Attack injection Tool. This paper provides a short Reveiw on the technique to evaluate performance of web security mechanisms.

Keywords: Security, fault injection, internet applications, review and evaluation, vulnerability, sql probe