Search CORE

7 research outputs found

Web Vulnerability Study of Online Pharmacy Sites

Author: Advanced Research Corporation [Internet]
Castro-Edwards J
CBC News [Internet]
Cenzic [Internet]
Choy A
Claburn T
Collmann J
Cook D
eEye Digital Security [Internet]
Hubbard WK
IBM [Internet]
IBM [Internet]
Joanne Kuzma
Ko M
Luo W
Mello J.
Moscaritolo A
N-Stalker [Internet]
N-Stalker [Internet]
National Association of Boards of Pharmacy (NABP) [Internet]
Office of the Privacy Commissioner of Canada [Internet]
Open Web Application Security Project (OWASP) [Internet]
PharmacyChecker.com [Internet]
Quon B
Salomon K
SANS Institute [Internet]
SANS Institute [Internet]
SANS Institute [Internet]
SANS Institute [Internet]
Tenable Network Security [Internet]
TRUSTe [Internet]
U.S. Census Bureau News [Internet]
U.S. Federal Trade Commission (FTC) [Internet]
U.S. General Accounting Office [Internet]
W3C [Internet]
W3C [Internet]
Waters J
White K
Yap K
Publication venue: 'Informa UK Limited'
Publication date: 01/01/2011
Field of study

Consumers are increasingly using online pharmacies, but these sites may not provide an adequate level of security with the consumers’ personal data. There is a gap in this research addressing the problems of security vulnerabilities in this industry. The objective is to identify the level of web application security vulnerabilities in online pharmacies and the common types of flaws, thus expanding on prior studies. Technical, managerial and legal recommendations on how to mitigate security issues are presented. The proposed four-step method first consists of choosing an online testing tool. The next steps involve choosing a list of 60 online pharmacy sites to test, and then running the software analysis to compile a list of flaws. Finally, an in-depth analysis is performed on the types of web application vulnerabilities. The majority of sites had serious vulnerabilities, with the majority of flaws being cross-site scripting or old versions of software that have not been updated. A method is proposed for the securing of web pharmacy sites, using a multi-phased approach of technical and managerial techniques together with a thorough understanding of national legal requirements for securing systems

Crossref

University of Worcester Research and Publications

Web servers under overload: How scheduling can help

Author: Almesberger
B.
Bender
Cockroft
Coffman
Feldmann
Freshwater
Harchol-Balter
Internet Town Hall
Manley
Microsoft Tech Net Insights
Schrage
Schroeder
Silberschatz
The World Wide Web Consortium (W3C)
Publication venue
Publication date: 01/01/2002
Field of study

This article provides a detailed implementation study on the behavior of web serves that serve static requests where the load fluctuates over time (transient overload). Various external factors are considered, including WAN delays and losses and different client behavior models. We find that performance can be dramatically improved via a kernel-level modification to the web server to change the scheduling policy at the server from the standard FAIR (processor-sharing) scheduling to SRPT (shortest-remaining-processing-time) scheduling. We find that SRPT scheduling induces no penalties. In particular, throughput is not sacrificed and requests for long files experience only negligibly higher response times under SRPT than they did under the original FAIR scheduling

CiteSeerX

Crossref

Data Communication and Network Infrastructure

Author: A.L.I.C.E
Australian Communications Authority
Cisco Systems Technology
Dishman
Foerster
Garawi
Guler
Gutierrez
Holle
Internet Assigned Numbers Authority
Internet Assigned Numbers Authority
Kern
Lewis
Lexicle Ltd.
Maglogiannis
Nuntius Systems
Oppermann
Otto
Pahlavan
Papir
Roussos
Simmonds
Spanoudakis
Tanenbaum
W3C [World Wide Web Consortium]
Wells
Wikipedia
Wikipedia
Publication venue: 'Elsevier BV'
Publication date: 01/01/2008
Field of study

Crossref

The Broadband Internet Technical Advisory Group (BITAG) and Its Role in Internet Governance

Author: Bitag See
Broadband Internet Technical Advisory See
Broadband Internet Technical Advisory See
Dale N. Hatfield
Id
Id
Id
Id
Id
Id
Id
Id
Julius Genachowski
Kaleb August Sieh
See
See A Simonelis
See Twg Governance Manual
See Twg Governance Manual
See Twg Governance Manual
See Twg Governance Manual
W3c See
Publication venue: 'Elsevier BV'
Publication date: 01/01/2012
Field of study

Crossref