Web应用发展迅速,但多数开发人员安全意识差,导致Web应用漏洞百出.针对Web开发时的安全风险,提出了基于OWASP的统计和文档的WEB应用安全检查和防范的方法,来降低Web应用的安全风险,并通过银行项目中的实际应用,表明该方法不但能提高Web应用安全性,同时增强了开发人员的安全意识.%Web application grows rapidly,but most of developers are lack of security consciousness. It brings about full of loopholes in web application. Aiming at this risk of web application development,this paper presents the method of web application security detection and measure based on the statistics and document of OWASP. It lowers the risk of web application security,and the actual project of banking indicates that this method can raise the awareness of security while improving the security of web application.
展开▼