Volume 1 Number 4 (Oct. 2009)
Home > Archive > 2009 > Volume 1 Number 4 (Oct. 2009) >
IJCEE 2009 Vol.1 (4): 449-457 ISSN: 1793-8163
DOI: 10.7763/IJCEE.2009.V1.69

A Platform Specific UML model for Web application self defense through an Aspect Oriented Approach

Dhanya Pramod and Vinay Vaidya

Abstract—Invention of internet has paved a way for popularity of Web based applications. Web application vulnerabilities are a major concern for critical applications. We bring forth the idea of making applications self defendable through aspect oriented approach of code modification. Aspect Oriented programming and modeling has been accepted as it facilitates integration of cross cutting concern without any change to the existing application and also facilitates separation of nonfunctional concerns in applications that are under development. We propose a Platform Specific Model{PSM) in java using aspect oriented approach for securing web applications against most popular cross site scripting, sql injection, authentication, authorization parameter tampering and session hijacking attacks. The main focus in this paper is the description of various classes in the PSM model. Each and every security countermeasure is modeled as class in the PSM model and act as an aspect in aspect oriented modeling. We have shown the relationships between various other components of aspects like pointcut and advice. The paper also presents an excerpt of the model implementation of aspect oriented countermeasure using aspectJ. The paper also gives an excerpt of algorithm devised for session protection. Running web applications were tested before and after the aspect injection and test results are given to prove the approach.

Index Terms—Web application, Aspect Oriented Approach, Platform Specific Model, Countermeasure.

Dhanya pramod is a research student at Symbiosis International University and working as an assistant Professor at Indira Institute of Management, Pune-India.
Vinay Vaidya is an advisor at Symbiosis International University, Pune-India.

Cite: Dhanya Pramod and Vinay Vaidya, "A Platform Specific UML model for Web application self defense through an Aspect Oriented Approach," International Journal of Computer and Electrical Engineering vol. 1, no. 4, pp. 449-457, 2009.

General Information

ISSN: 1793-8163 (Print)
Abbreviated Title: Int. J. Comput. Electr. Eng.
Frequency: Quarterly
Editor-in-Chief: Prof. Yucong Duan
Abstracting/ Indexing: EI (INSPEC, IET), Ulrich's Periodicals Directory, Google Scholar, EBSCO, ProQuest, and Electronic Journals Library
E-mail: ijcee@iap.org

What's New

  • Jun 03, 2019 News!

    IJCEE Vol. 9, No. 2 - Vol. 10, No. 2 have been indexed by EI (Inspec) Inspec, created by the Institution of Engineering and Tech.!   [Click]

  • May 13, 2020 News!

    IJCEE Vol 12, No 2 is available online now   [Click]

  • Mar 04, 2020 News!

    IJCEE Vol 12, No 1 is available online now   [Click]

  • Dec 11, 2019 News!

    The dois of published papers in Vol 11, No 4 have been validated by Crossref

  • Oct 11, 2019 News!

    IJCEE Vol 11, No 4 is available online now   [Click]

  • Read more>>