Web Security and Log Management: An Application Centric Perspective
Date
2013-07Author
Mwaura Kahonge, Andrew
Okello-Odongo, William
Miriti, Evans K.
Abade, Elisha
Language
enMetadata
Show full item recordAbstract
The World Wide Web has been an environment with many security threats and lots of reported cases of security breaches. Various tools and techniques have been applied in trying to curb this problem, however new attacks continue to plague the Internet. We discuss risks that affect web applications and explain how network-centric and host-centric techniques, as much as they are crucial in an enterprise, lack necessary depth to comprehensively analyze overall application security. The nature of web applications to span a number of servers introduces a new dimension of security requirement that calls for a holistic approach to protect the information asset regardless of its physical or logical separation of modules and tiers. We therefore classify security mechanisms as either infrastructure-centric or application-centric based on what asset is being secured. We then describe requirements for such application-centric security mechanisms.
URI
http://www.scirp.org/journal/PaperInformation.aspx?PaperID=34448#.U71xQrFzb6Ihttp://hdl.handle.net/11295/72279
Citation
A. Kahonge, W. Okello-Odongo, E. Miriti and E. Abade, "Web Security and Log Management: An Application Centric Perspective," Journal of Information Security, Vol. 4 No. 3, 2013, pp. 138-143. doi:Publisher
University of Nairobi,
Description
Article
Collections
Related items
Showing items related by title, author, creator and subject.
-
Citizen-centric evaluation framework for e-government systems in Kenya. The case of public service commission of Kenya Online Recruitment & Selection system
Ogutu, Joseph O.; Irungu, J. (University of Nairobi, 2013)E-government services is growing at a considerable pace, especially in developing countries as government seeks to make use of ICT to serve its citizens efficiently and effectively. E-government projects cost are enormous ... -
State-Centric approach to security: a case study of Kenya
Kagundu, Phinehas Nyaga (University of Nairobi, Kenya, 2011)The need for security cannot be gainsaid. This is because its presence or absence determines whether hwnan goals will be achieved. Security impacts on development, wellbeing and dignity of hwnan beings. Indeed, where it ... -
Towards the development of a citizen-centric framework for evaluating the impact of eGovernment: A case study of developing countries
Omwenga, Elijah; Otieno, Ibrahim (2014)eGovernment has emerged as one of the innovative ways of providing information and delivering services to citizens. It is providing governments with new opportunities of bringing services closer to the citizen in cost-effective, ...