The backdoor or information leak of Web servers can be detected by using Web Mining techniques on some abnormal Web log and Web application log data. The security of Web servers can be enhanced and the damage of illeg...The backdoor or information leak of Web servers can be detected by using Web Mining techniques on some abnormal Web log and Web application log data. The security of Web servers can be enhanced and the damage of illegal access can be avoided. Firstly, the system for discovering the patterns of information leakages in CGI scripts from Web log data was proposed. Secondly, those patterns for system administrators to modify their codes and enhance their Web site security were provided. The following aspects were described: one is to combine web application log with web log to extract more information,so web data mining could be used to mine web log for discovering the information that firewall and Information Detection System cannot find. Another approach is to propose an operation module of web site to enhance Web site security. In cluster server session, Density -Based Clustering technique is used to reduce resource cost and obtain better efficiency.展开更多
Results of the 2007/08 survey "Energy--the present and the future" conducted on a population of 1439 students from Zagreb University have shown that after school and television, internet is the third major source of...Results of the 2007/08 survey "Energy--the present and the future" conducted on a population of 1439 students from Zagreb University have shown that after school and television, internet is the third major source of knowledge for the participants. Therefore, "NEMIS" web site (www.nemis.zpf.fer.hr) was launched at the end of the 2008. NEMIS is a Croatian acronym for "Nuclear Energy--Mysticism and Reality". The site was envisioned as a place where interested visitors could get information, prepared by experts, on all the issues relating to nuclear energy. The main objectives of the work reported in this paper are to present the structure of the NEMIS web site and to analyze the activity on the site during the last three years. Based on the performed analysis, future activities on the site are set and discussed.展开更多
You’ve built a great web site.It’s well designed,it encourages customer interaction,and it’s filledwith compelling,well-organized content.Now comes the tough reality:Creating a great site doesn’tautomatically mean...You’ve built a great web site.It’s well designed,it encourages customer interaction,and it’s filledwith compelling,well-organized content.Now comes the tough reality:Creating a great site doesn’tautomatically mean customers will visit it.With millions of web sites today,chances are slim that a customerwill randomly happen onto your site.That’s why it’s imperative that you use many strategies to get your web site noticed by the morethan 100 million people who now surf the Web.Here are seven ideas to help get you started:展开更多
Web sites are very important and companies can attract customers by promoting various features of the web site. This paper presents an analysis of the relationship between web site functions and firm performance. A re...Web sites are very important and companies can attract customers by promoting various features of the web site. This paper presents an analysis of the relationship between web site functions and firm performance. A research model based on the DeLone and McLean (D&M) model and customer service life cycle (CSLC) theory was used to investigate the impact of web site functions on e-business success. The research model considers web site functions, web site use, customer satisfaction, and firm performance. According to the CSLC theory, there are three stages in a customer service life cycle. Therefore, the web site functions are divided into three stages: requirements, acquisition, and ownership. The functions in each stage serve to encourage usage and thus, enhance customer satisfaction and firm performance. The theoretical model and hypotheses were tested using data collected from 72 wholesale and retail firms in China using the partial least squares (PLS) method. The results suggest that web site functions in the acquisition stage have the strongest impact on web site use and that the improvement of customer satisfaction can significantly increase firm performance.展开更多
Considering the escalating frequency and sophistication of cyber threats targeting web applications, this paper proposes the development of an automated web security analysis tool to address the accessibility gap for ...Considering the escalating frequency and sophistication of cyber threats targeting web applications, this paper proposes the development of an automated web security analysis tool to address the accessibility gap for non-security professionals. This paper presents the design and implementation of an automated web security analysis tool, AWSAT, aimed at enabling individuals with limited security expertise to effectively assess and mitigate vulnerabilities in web applications. Leveraging advanced scanning techniques, the tool identifies common threats such as Cross-Site Scripting (XSS), SQL Injection, and Cross-Site Request Forgery (CSRF), providing detailed reports with actionable insights. By integrating sample payloads and reference study links, the tool facilitates informed decision-making in enhancing the security posture of web applications. Through its user-friendly interface and robust functionality, the tool aims to democratize web security practices, empowering a wider audience to proactively safeguard against cyber threats.展开更多
随着信息时代的到来,网络安全问题越来越受到人们关注,其中Web安全问题是最常见的安全问题。文章根据风险的发生频率和危害程度,以结构化查询语言(Structured Query Language,SQL)注入、跨站脚本攻击(Cross Site Scripting,XSS)注入、...随着信息时代的到来,网络安全问题越来越受到人们关注,其中Web安全问题是最常见的安全问题。文章根据风险的发生频率和危害程度,以结构化查询语言(Structured Query Language,SQL)注入、跨站脚本攻击(Cross Site Scripting,XSS)注入、文件上传漏洞为例,研究这3种安全风险的原理、分类及安全防护。展开更多
Web 2.0的出现使信息构建(IA)的内容发生了深刻变化,IA已进入"信息构建2.0"(IA2.0)阶段。在IA2.0阶段,IA作为一门学科、一种角色和一类社团的协调统一体而存在,它强调真正"以用户为中心"和"丰富的用户体验&qu...Web 2.0的出现使信息构建(IA)的内容发生了深刻变化,IA已进入"信息构建2.0"(IA2.0)阶段。在IA2.0阶段,IA作为一门学科、一种角色和一类社团的协调统一体而存在,它强调真正"以用户为中心"和"丰富的用户体验"的核心理念,以满足新环境下的用户需求。Web2.0网站的IA,是IA2.0的典型应用,也是IA2.0阶段研究的主要内容,本文将其称为网站IA2.0。文中设计了一个网站IA2.0模型,并进行了简单的实例分析。展开更多
文摘The backdoor or information leak of Web servers can be detected by using Web Mining techniques on some abnormal Web log and Web application log data. The security of Web servers can be enhanced and the damage of illegal access can be avoided. Firstly, the system for discovering the patterns of information leakages in CGI scripts from Web log data was proposed. Secondly, those patterns for system administrators to modify their codes and enhance their Web site security were provided. The following aspects were described: one is to combine web application log with web log to extract more information,so web data mining could be used to mine web log for discovering the information that firewall and Information Detection System cannot find. Another approach is to propose an operation module of web site to enhance Web site security. In cluster server session, Density -Based Clustering technique is used to reduce resource cost and obtain better efficiency.
文摘Results of the 2007/08 survey "Energy--the present and the future" conducted on a population of 1439 students from Zagreb University have shown that after school and television, internet is the third major source of knowledge for the participants. Therefore, "NEMIS" web site (www.nemis.zpf.fer.hr) was launched at the end of the 2008. NEMIS is a Croatian acronym for "Nuclear Energy--Mysticism and Reality". The site was envisioned as a place where interested visitors could get information, prepared by experts, on all the issues relating to nuclear energy. The main objectives of the work reported in this paper are to present the structure of the NEMIS web site and to analyze the activity on the site during the last three years. Based on the performed analysis, future activities on the site are set and discussed.
文摘You’ve built a great web site.It’s well designed,it encourages customer interaction,and it’s filledwith compelling,well-organized content.Now comes the tough reality:Creating a great site doesn’tautomatically mean customers will visit it.With millions of web sites today,chances are slim that a customerwill randomly happen onto your site.That’s why it’s imperative that you use many strategies to get your web site noticed by the morethan 100 million people who now surf the Web.Here are seven ideas to help get you started:
基金Supported by the National Natural Science Foundation of China (Nos. 70772022, 70472007, 70231010, and 70621061)the MOE Project of Key Research Institute of Humanity and Social Sciences at Universities (No. 06JJD630014)
文摘Web sites are very important and companies can attract customers by promoting various features of the web site. This paper presents an analysis of the relationship between web site functions and firm performance. A research model based on the DeLone and McLean (D&M) model and customer service life cycle (CSLC) theory was used to investigate the impact of web site functions on e-business success. The research model considers web site functions, web site use, customer satisfaction, and firm performance. According to the CSLC theory, there are three stages in a customer service life cycle. Therefore, the web site functions are divided into three stages: requirements, acquisition, and ownership. The functions in each stage serve to encourage usage and thus, enhance customer satisfaction and firm performance. The theoretical model and hypotheses were tested using data collected from 72 wholesale and retail firms in China using the partial least squares (PLS) method. The results suggest that web site functions in the acquisition stage have the strongest impact on web site use and that the improvement of customer satisfaction can significantly increase firm performance.
文摘Considering the escalating frequency and sophistication of cyber threats targeting web applications, this paper proposes the development of an automated web security analysis tool to address the accessibility gap for non-security professionals. This paper presents the design and implementation of an automated web security analysis tool, AWSAT, aimed at enabling individuals with limited security expertise to effectively assess and mitigate vulnerabilities in web applications. Leveraging advanced scanning techniques, the tool identifies common threats such as Cross-Site Scripting (XSS), SQL Injection, and Cross-Site Request Forgery (CSRF), providing detailed reports with actionable insights. By integrating sample payloads and reference study links, the tool facilitates informed decision-making in enhancing the security posture of web applications. Through its user-friendly interface and robust functionality, the tool aims to democratize web security practices, empowering a wider audience to proactively safeguard against cyber threats.
文摘随着信息时代的到来,网络安全问题越来越受到人们关注,其中Web安全问题是最常见的安全问题。文章根据风险的发生频率和危害程度,以结构化查询语言(Structured Query Language,SQL)注入、跨站脚本攻击(Cross Site Scripting,XSS)注入、文件上传漏洞为例,研究这3种安全风险的原理、分类及安全防护。