Bezpečnost webových aplikací a výukové moduly pro předmět "Bezpečnost informačních systémů"

Abstract

This thesis is focused on a safety of web applications that are developed with the use of scripting language called PHP. Introduction of the thesis concerns with web´s applications characteristic and the technologies that are available for the development of this application. Main chapter of the thesis is divided into two parts. First part is the description of the elements that define the security of web applications. Second part contain the categorizations of the possible attacks and defenses against them according to OWASP Top 10 Ranking. The demonstration of selected attacks and defenses through web presentation is another part of the thesis. The web presentation is developed by PHP language and it illustrates the security techniques and attacking principals. This web application is determined for study purposes for the subject "Information Systems Security".