Show simple item record

dc.contributor.advisorRuiz Parrales, Iván Rubén
dc.contributor.authorValero Sánchez, Irene Mercedes
dc.date.accessioned2023-06-05T16:11:16Z
dc.date.available2023-06-05T16:11:16Z
dc.date.issued2023
dc.identifier.urihttp://dspace.utb.edu.ec/handle/49000/14254
dc.descriptionThe present degree work is the analysis of clickjacking and touchjacking attack methodologies in a controlled environment, the main objective being to determine the level of efficiency of each of these attacks that could be subjected to certain conditions that could be raised in the different scenarios, in the same way the possible mitigation measures suggested by authors are implemented within the analysis carried out, for the development of this case study the following steps were carried out: 1) Analysis of a possible attack scenario 2) Evaluation of possible threats of the attack scenario 3) Development of matrices of possible attacks 4) Determine possible critical vectors of the proposed scenario 5) Evaluation of possible attack and mitigation techniques. For the development of this case study, an experimental method was used in order to modify each of the variables of the proposed scenarios and determine the effects that it causes in each of them, a qualitative method is also implemented in order to determine characteristics and conditions that may present a greater risk against this type of attack. The result of the analysis of clickjacking and touchjacking techniques in this case study seeks to establish possible sanitation measures and implementation of good practices, as well as the use of standards in web development to improve security within web applications.es_ES
dc.descriptionThe present degree work is the analysis of clickjacking and touchjacking attack methodologies in a controlled environment, the main objective being to determine the level of efficiency of each of these attacks that could be subjected to certain conditions that could be raised in the different scenarios, in the same way the possible mitigation measures suggested by authors are implemented within the analysis carried out, for the development of this case study the following steps were carried out: 1) Analysis of a possible attack scenario 2) Evaluation of possible threats of the attack scenario 3) Development of matrices of possible attacks 4) Determine possible critical vectors of the proposed scenario 5) Evaluation of possible attack and mitigation techniques. For the development of this case study, an experimental method was used in order to modify each of the variables of the proposed scenarios and determine the effects that it causes in each of them, a qualitative method is also implemented in order to determine characteristics and conditions that may present a greater risk against this type of attack. The result of the analysis of clickjacking and touchjacking techniques in this case study seeks to establish possible sanitation measures and implementation of good practices, as well as the use of standards in web development to improve security within web applications.es_ES
dc.description.abstractEl presente trabajo de titulación es de análisis de metodologías de ataque clickjacking y touchjacking en un entorno controlado, siendo el objetivo fundamental determinar cuál es el nivel de eficiencia de cada uno de estos ataques que podrían ser sometidos a ciertas condiciones que podrían ser serán planteadas en los diferentes escenarios, de igual forma se implementan las posibles medidas de mitigación sugeridas por autores dentro del análisis realizado, para el desarrollo de este caso de estudio se realizaron los siguientes pasos: 1) Análisis de un posible escenario de Ataque 2) Evaluación de posibles amenazas del escenario de ataque 3) Desarrollo de matrices de posibles ataques 4) Determinar posibles vectores críticos del escenario planteado 5) Evaluación de posibles técnicas de ataque y mitigación. Para el desarrollo del presente caso de estudio se utilizó un método experimental con el fin de modificar cada una de las variables de los escenarios planteados y determinar los efectos que causa en cada uno de ellos, también se implementa un método cualitativo con el fin de determinar características y condiciones que pueden presentar un mayor riesgo frente a este tipo de ataques. El resultado del análisis de las técnicas de clickjacking y touchjacking en este caso de estudio busca establecer posibles medidas de sanitización e implementación de buenas prácticas, así como también la utilización de estándares en el desarrollo web para mejorar la seguridad dentro de las aplicaciones web.es_ES
dc.format.extent32 p.es_ES
dc.language.isoeses_ES
dc.publisherBabahoyo: UTB-FAFI. 2023es_ES
dc.rightsAtribución-NoComercial-SinDerivadas 3.0 Ecuador*
dc.rights.urihttp://creativecommons.org/licenses/by-nc-nd/3.0/ec/*
dc.subjectClickjackinges_ES
dc.subjectTouchjackinges_ES
dc.subjectEficienciaes_ES
dc.subjectSanitizaciónes_ES
dc.titleAnálisis de metodologías de ataque tipo Clickjacking y Touchjacking, en entorno web.es_ES
dc.typebachelorThesises_ES


Files in this item

Thumbnail
Thumbnail

This item appears in the following Collection(s)

Show simple item record

Atribución-NoComercial-SinDerivadas 3.0 Ecuador
Except where otherwise noted, this item's license is described as Atribución-NoComercial-SinDerivadas 3.0 Ecuador