Mostrar el registro sencillo del ítem
Análisis de metodologías de ataque tipo Clickjacking y Touchjacking, en entorno web.
| dc.contributor.advisor | Ruiz Parrales, Iván Rubén | |
| dc.contributor.author | Valero Sánchez, Irene Mercedes | |
| dc.date.accessioned | 2023-06-05T16:11:16Z | |
| dc.date.available | 2023-06-05T16:11:16Z | |
| dc.date.issued | 2023 | |
| dc.identifier.uri | http://dspace.utb.edu.ec/handle/49000/14254 | |
| dc.description | The present degree work is the analysis of clickjacking and touchjacking attack methodologies in a controlled environment, the main objective being to determine the level of efficiency of each of these attacks that could be subjected to certain conditions that could be raised in the different scenarios, in the same way the possible mitigation measures suggested by authors are implemented within the analysis carried out, for the development of this case study the following steps were carried out: 1) Analysis of a possible attack scenario 2) Evaluation of possible threats of the attack scenario 3) Development of matrices of possible attacks 4) Determine possible critical vectors of the proposed scenario 5) Evaluation of possible attack and mitigation techniques. For the development of this case study, an experimental method was used in order to modify each of the variables of the proposed scenarios and determine the effects that it causes in each of them, a qualitative method is also implemented in order to determine characteristics and conditions that may present a greater risk against this type of attack. The result of the analysis of clickjacking and touchjacking techniques in this case study seeks to establish possible sanitation measures and implementation of good practices, as well as the use of standards in web development to improve security within web applications. | es_ES |
| dc.description | The present degree work is the analysis of clickjacking and touchjacking attack methodologies in a controlled environment, the main objective being to determine the level of efficiency of each of these attacks that could be subjected to certain conditions that could be raised in the different scenarios, in the same way the possible mitigation measures suggested by authors are implemented within the analysis carried out, for the development of this case study the following steps were carried out: 1) Analysis of a possible attack scenario 2) Evaluation of possible threats of the attack scenario 3) Development of matrices of possible attacks 4) Determine possible critical vectors of the proposed scenario 5) Evaluation of possible attack and mitigation techniques. For the development of this case study, an experimental method was used in order to modify each of the variables of the proposed scenarios and determine the effects that it causes in each of them, a qualitative method is also implemented in order to determine characteristics and conditions that may present a greater risk against this type of attack. The result of the analysis of clickjacking and touchjacking techniques in this case study seeks to establish possible sanitation measures and implementation of good practices, as well as the use of standards in web development to improve security within web applications. | es_ES |
| dc.description.abstract | El presente trabajo de titulación es de análisis de metodologías de ataque clickjacking y touchjacking en un entorno controlado, siendo el objetivo fundamental determinar cuál es el nivel de eficiencia de cada uno de estos ataques que podrían ser sometidos a ciertas condiciones que podrían ser serán planteadas en los diferentes escenarios, de igual forma se implementan las posibles medidas de mitigación sugeridas por autores dentro del análisis realizado, para el desarrollo de este caso de estudio se realizaron los siguientes pasos: 1) Análisis de un posible escenario de Ataque 2) Evaluación de posibles amenazas del escenario de ataque 3) Desarrollo de matrices de posibles ataques 4) Determinar posibles vectores críticos del escenario planteado 5) Evaluación de posibles técnicas de ataque y mitigación. Para el desarrollo del presente caso de estudio se utilizó un método experimental con el fin de modificar cada una de las variables de los escenarios planteados y determinar los efectos que causa en cada uno de ellos, también se implementa un método cualitativo con el fin de determinar características y condiciones que pueden presentar un mayor riesgo frente a este tipo de ataques. El resultado del análisis de las técnicas de clickjacking y touchjacking en este caso de estudio busca establecer posibles medidas de sanitización e implementación de buenas prácticas, así como también la utilización de estándares en el desarrollo web para mejorar la seguridad dentro de las aplicaciones web. | es_ES |
| dc.format.extent | 32 p. | es_ES |
| dc.language.iso | es | es_ES |
| dc.publisher | Babahoyo: UTB-FAFI. 2023 | es_ES |
| dc.rights | Atribución-NoComercial-SinDerivadas 3.0 Ecuador | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/ec/ | * |
| dc.subject | Clickjacking | es_ES |
| dc.subject | Touchjacking | es_ES |
| dc.subject | Eficiencia | es_ES |
| dc.subject | Sanitización | es_ES |
| dc.title | Análisis de metodologías de ataque tipo Clickjacking y Touchjacking, en entorno web. | es_ES |
| dc.type | bachelorThesis | es_ES |
Ficheros en el ítem
Este ítem aparece en la(s) siguiente(s) colección(ones)
Excepto si se señala otra cosa, la licencia del ítem se describe como Atribución-NoComercial-SinDerivadas 3.0 Ecuador