Web Application Attack and Countermeasure

Adoption of internet for business operations has changed the face of business interactions in business 2 business (B2B), business 2 consumer (B2C) or now popular consumer 2 consumer (C2C) models. Applications are built to adapt this changing business perspective and thereby giving more and more control to the end user/consumer to define the way they want to make the business happen. But as we say, each coin has two sides, with flexibility there comes a great responsibility of maintaining the sanity of the information, which these applications access and publish on the internet. The thought of increase of cyber terrorism and espionage incidents has triggered a worldwide uncertainty of ever increasing dependency of internet as a business medium. This paper hereby attempts to address these problems by taking references from the well-known attack vectors and thereby providing counter measures to identify, analyze and mitigate the problem. This paper primarily takes the reference from Open Web Application Security Project (OWASP) guidelines.