{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,8,20]],"date-time":"2024-08-20T06:31:33Z","timestamp":1724135493033},"reference-count":28,"publisher":"IEEE","license":[{"start":{"date-parts":[[2021,5,14]],"date-time":"2021-05-14T00:00:00Z","timestamp":1620950400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,5,14]],"date-time":"2021-05-14T00:00:00Z","timestamp":1620950400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,5,14]],"date-time":"2021-05-14T00:00:00Z","timestamp":1620950400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,5,14]]},"DOI":"10.1109\/eit51626.2021.9491919","type":"proceedings-article","created":{"date-parts":[[2021,7,27]],"date-time":"2021-07-27T01:21:10Z","timestamp":1627348870000},"source":"Crossref","is-referenced-by-count":4,"title":["Towards Tackling Common Web Application Vulnerabilities Using Secure Design Patterns"],"prefix":"10.1109","author":[{"given":"Alok Chandrakant","family":"Ratnaparkhi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yi","family":"Liu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2014.71"},{"key":"ref11","author":"gamma","year":"1995","journal-title":"Design Patterns Elements of Reusable Object-Oriented Software"},{"key":"ref12","article-title":"Classifying Common Security Vulnerabilities by Software Type","author":"ezenwoye","year":"2020","journal-title":"Proceedings of the 32nd International Conference on Software Engineering and Knowledge Engineering (SEKE 2020)"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2960449"},{"key":"ref14","year":"0","journal-title":"National Vulnerability Database"},{"key":"ref15","article-title":"SQL Injection Types","year":"0"},{"key":"ref16","article-title":"Cross-site Scripting","year":"0"},{"key":"ref17","article-title":"OWASP Juicy shop application","year":"0"},{"key":"ref18","year":"0","journal-title":"J2TEAM XSS Simulation Application"},{"key":"ref19","year":"0","journal-title":"SQL Simulation Project"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1587\/transinf.2019EDL8143"},{"key":"ref4","article-title":"Secure by Design","author":"deogun","year":"2019","journal-title":"Manning"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2947527"},{"key":"ref3","article-title":"Software Assurance","year":"0"},{"key":"ref6","author":"schumacher","year":"2005","journal-title":"Security Patterns Integrating Security and Systems Engineering"},{"key":"ref5","article-title":"Architectural Patterns for Enabling Application Security","author":"yoder","year":"1998","journal-title":"Proceedings of Fourth Conference on Patterns Languages of Programs (PLoP &#x2019;97)"},{"key":"ref8","author":"dougherty","year":"2009","journal-title":"Security Design Patterns"},{"key":"ref7","article-title":"Core Security Patterns: Best Practices and Strategies for J2EE(TM)","author":"steel","year":"2005","journal-title":"Web Services and Identity Management"},{"key":"ref2","article-title":"107 Must-Know Data Breach Statistics for 2020","year":"0"},{"key":"ref9","author":"fernandez","year":"2013","journal-title":"Security Patterns in Practice Designing Secure Architectures Using Software Patterns"},{"key":"ref1","article-title":"National vulnerability database","year":"0"},{"key":"ref20","article-title":"SQLMAP","author":"guimaraes","year":"0"},{"key":"ref22","article-title":"Prevention of Cross-Site Scripting Attacks in Web Applications","author":"elkhodrand","year":"2020","journal-title":"Proceedings of the Work-shops of the 34th International Conference on Advanced Information Networking and Applications"},{"key":"ref21","article-title":"Wapiti, The web-application vulnerability scanner","year":"0"},{"key":"ref24","article-title":"A Classification of SQL-Injection Attacks and Countermeasures","author":"heyman","year":"2007","journal-title":"Proceedings of international Workshop on Software Engineering for Secure Systems"},{"key":"ref23","article-title":"A Classification of SQL-Injection Attacks and Countermeasures","author":"halfond","year":"2006","journal-title":"Proc 14th ACM SIGSOFT Symp on Foundations of Software Engineering"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.3745\/JIPS.2010.6.4.563"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1016\/j.cola.2019.100938"}],"event":{"name":"2021 IEEE International Conference on Electro Information Technology (EIT)","location":"Mt. Pleasant, MI, USA","start":{"date-parts":[[2021,5,14]]},"end":{"date-parts":[[2021,5,15]]}},"container-title":["2021 IEEE International Conference on Electro Information Technology (EIT)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9491850\/9491831\/09491919.pdf?arnumber=9491919","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,5,10]],"date-time":"2022-05-10T15:48:21Z","timestamp":1652197701000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9491919\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,5,14]]},"references-count":28,"URL":"https:\/\/doi.org\/10.1109\/eit51626.2021.9491919","relation":{},"subject":[],"published":{"date-parts":[[2021,5,14]]}}}