Seguridad web con Zend Framework 3

Pérez Bernal, Daniel (2019). Seguridad web con Zend Framework 3. Thesis (Master thesis), E.T.S.I. de Sistemas Informáticos (UPM).

Description

Title: Seguridad web con Zend Framework 3
Author/s:
  • Pérez Bernal, Daniel
Contributor/s:
  • Frutos Velasco, Juan Alberto de
Item Type: Thesis (Master thesis)
Masters title: Ingeniería Web
Date: July 2019
Subjects:
Freetext Keywords: Seguridad informática; Seguridad Zend Framework
Faculty: E.T.S.I. de Sistemas Informáticos (UPM)
Department: Sistemas Informáticos
Creative Commons Licenses: Recognition - No derivative works - Non commercial

Full text

[img]
Preview
PDF - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (2MB) | Preview

Abstract

En el mundo de la web existen diferentes formas de crear aplicaciones que permiten gestionar diversa información. Es necesario que la información se transporte e incluso se proteja debido a la gran cantidad de ataques informáticos que ocurren a diario. Por ello, siempre hay que tomar medidas preventivas y reactivas para frenarlo y que, gracias a estas medidas, nuestra aplicación web no sufra ningún tipo de vulnerabilidad. En este TFM se recopilan un conjunto de vulnerabilidades web realizando un desarrollo seguro de una aplicación y como podrían tomarse soluciones si son detectadas. Para ello se ha implementado una pequeña tienda online a través de un framework de desarrollo. La tienda dispondrá de varios roles, un invitado, un usuario registrado que podrá comprar productos, ver su perfil e historial de compras, así como un administrador con las mismas funcionalidades, pudiendo gestionar productos, categorías y usuarios. Posteriormente, se ha procedido a realizar un escáner de vulnerabilidades a través de una herramienta para dicho cometido llamada ZAP OWASP para comprobar las medidas tomadas. Abstract: In the world of the web there are different ways of creating applications that allow managing diverse information. It is necessary that the information is transported and even protected due to the large number of computer attacks that occur daily. Therefore, you should always take preventive and reactive measures to stop it and that, thanks to these measures, our web application does not suffer any kind of vulnerability. In this TFM, a set of web vulnerabilities are collected, making sure that an application is developed safely and how solutions could be taken if they are detected. For this, a small online store has been implemented through a development framework. The store will have several roles, a guest, a registered user who will be able to buy products, view their profile and purchase history, as well as an administrator with the same functionalities, being able to manage products, categories and users. Subsequently, a vulnerability scanner was carried out using a tool for this purpose called ZAP OWASP to check the measures taken.

More information

Item ID: 55858
DC Identifier: http://oa.upm.es/55858/
OAI Identifier: oai:oa.upm.es:55858
Deposited by: Biblioteca Universitaria Campus Sur
Deposited on: 17 Jul 2019 11:18
Last Modified: 17 Jul 2019 11:18
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM