Bilgisayar Mühendisliği Bölümü Tezleri

Permanent URI for this collectionhttps://hdl.handle.net/20.500.12416/58

Browse

Browsing Bilgisayar Mühendisliği Bölümü Tezleri by Author "Ahmed, Saadallah Darwesh"

Filter results by typing the first few letters
Now showing 1 - 1 of 1
  • Item
    Citation Count: Ahmed, Saadallah Darwesh (2017). Security analysis of HTML5 elements, attributes, and features / HTML5 elemanlarının nitelikleri ve özelliklerinin güvenlik analizi. Yayımlanmış yüksek lisans tezi. Ankara: Çankaya Üniversitesi, Fen Bilimleri Enstitüsü
    Security analysis of HTML5 elements, attributes, and features
    (2016-09) Ahmed, Saadallah Darwesh; Çankaya Üniversitesi, Mühendislik Fakültesi, Bilgisayar Mühendisliği Bölümü
    The aim of this research is analyzing the security of new HTML5 elements, attributes and features. Another aim of this research is finding how every HTML5 code can be attacked for creating new attacking patterns and exploiting possible vulnerabilities. These findings help web developers to understand how new HTML5 features are affected the current state of web security and how current available prevention techniques can set down possible threats. In this study, firstly, the current HTML5 standard was reviewed and security issues according to principles of web security were detected. After analyzing these findings, the results show that there are security issues in some HTML5 features that can be used by attackers for creating new high-risk and low-risk attacks. The results also show that some new HTML5 features provide more capabilities for some known attacking techniques. According to our analyses, widely available cross-site scripting attacks can be prevented at client-side by switching prevention technique from server-side to the browser prevention techniques. These findings increase our understanding of how adding capabilities to client-side programming affects the security of web applications.