РОЗРОБКА ПОЛІТИКИ БЕЗПЕКИ WEB-ДОДАТКА ЕЛЕКТРОННОЇ КОМЕРЦІЇ ВІДПОВІДНО ДО ВИМОГ PA-DSS

О. Чолишкіна; Г. Гончар

doi:10.18372/2310-5461.9.5113

THE SECURITY POLICY FOR WEB-APPLICATION OF E-COMMERCE ACCORDANCE WITH THE REQUIREMENTS PA-DSS

Authors

О. Чолишкіна National Aviation University
Г. Гончар National Aviation University

DOI:

https://doi.org/10.18372/2310-5461.9.5113

Keywords:

web-application, PA-DSS, the security policy, vulnerability, threat

Abstract

The analysis of the requirements of the standard PA-DSS is provided. The main threats of e-commerce web-applications are analyzed. The security policy for Java-related web-appplication that performs payment func-tions by credit cards is formed. The choice of software to be used in the implementation of secure web-application is decided.

References

Payment Card Industry Security Standards Council standarts. -https://www.pcisecuritystandards.org/security_standards/documents.php.

Payment Card Industry Security Standards Council. Payment Application Data Security Standard (PA-DSS) 2.0, 2010. — 55 р.

The Open Web Application Security Project (OWASP). The OWASP Top 10 Web Application Security Risks for 2010. — https://www.owasp.org/index.php/Category:OWASP_

Top_Ten_Project.

WASC Threat Classification. — http://wasc.org/doc/WASC_Threat_Classification

Ron Ben Natan. HOWTO Secure and Audit Oracle 10g and 11g. — CRC Press, 2009. — 454 р.

Gary Mak, Josh Long, Daniel Rubio. Spring Recipes. — Apress, 2010. — 1059 р.

Peter Mularien. Spring Security 3. — Publishing, 2010. — 397 р.

НД ТЗІ 1.6-003-2004. Модель загроз для інформації та модель порушника. — 23 с.

Downloads

Published

2011-04-10

How to Cite

Чолишкіна, О., & Гончар, Г. (2011). THE SECURITY POLICY FOR WEB-APPLICATION OF E-COMMERCE ACCORDANCE WITH THE REQUIREMENTS PA-DSS. Science-Based Technologies, 9(1-2), 81–87. https://doi.org/10.18372/2310-5461.9.5113

Download Citation

Issue

Vol. 9 No. 1-2 (2011)

Section

Information Security

License

The scientific journal adheres to the principles of Open Access and provides free, immediate, and permanent access to all published materials without financial, technical, or legal barriers for readers.

All articles are published in Open Access under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.

Copyright

Authors who publish their works in the journal:

retain the copyright to their publications;
grant the journal the right of first publication of the article;
agree to the distribution of their materials under the CC BY 4.0 license;
have the right to reuse, archive, and distribute their works (including in institutional and subject repositories), provided that proper reference is made to the original publication in the journal.