Identification and Illustration of Insecure Direct Object References and their Countermeasures

Shrestha, Ajay Kumar; Maharjan, Pradip Singh; Paudel, Santosh

doi:10.5120/20082-2148

Cited by 6 publications

(4 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Secure software coding challenges SSC is not as simple as it seems to be, various challenges are faced during this process. Some critical challenges involved in SSC are listed below [38][39][40][41][42][43][44][45][46][47][48][49][50] :…”

Section: 2mentioning

confidence: 99%

“…SSC is not as simple as it seems to be, various challenges are faced during this process. Some critical challenges involved in SSC are listed below 38‐50 : Injection, Broken authentication and session management, Cross‐site scripting Insecure direct object reference, Security misconfiguration, Sensitive data exposure, Missing function level access control, Cross‐site request forgery, Using components with know vulnerabilities, Invalidated redirects and forwards, Data validation, Authentication, Session management, Authorization, Cryptography, Error handling, Logging, Security configuration, Network architecture. …”

Section: Motivation and Related Reviewmentioning

confidence: 99%

See 1 more Smart Citation

Toward a readiness model for secure software coding

et al. 2022

View full text Add to dashboard Cite

The heart of the application's secure operation is its software code. If the code contains flaws, the entire program might be hacked. The issue with software vulnerabilities is that they reveal coding flaws that hackers could exploit. The prevention of cybersecurity issues begins with the program code itself. When writing software code, a software developer must consider expressing the application's architecture and design requirements, keeping the code streamlined and efficient, and ensuring the code is safe. Secure code helps save the system from various cyber-attacks by eliminating the weaknesses that many hacks rely on. To assist the software organization in Secure Software Coding (SSC), this article proposes a readiness model for SSC, namely SSCRM. The proposed model has five levels; SSC challenges and best practices (BP) are mapped at each level. The proposed model will help the organizations better understand SSC challenges and BPs and provide a roadmap for developing secure software code. The proposed model was evaluated using three case studies. The findings demonstrate that the proposed approach helps determine an organization's SSC level.

show abstract

Section: 2mentioning

confidence: 99%

Section: Motivation and Related Reviewmentioning

confidence: 99%

Toward a readiness model for secure software coding

et al. 2022

View full text Add to dashboard Cite

show abstract

“…Access control vulnerabilities are typically divided in horizontal and vertical privilege escalation vulnerabilities, where the first refers to a user performing actions or accessing data of another user with the same level of permissions and the second refers to performing actions or accessing data of users with elevated privileges [87]. An example of broken access control are insecure direct object references (IDOR) vulnerabilities, where the persistent object can be accessed directly through the application interface, e.g., a URL that includes the internal id of the object [88]. The impact of broken access control exploitation can range from information disclosure to complete host takeover.…”

Section: Broken Access Controlmentioning

confidence: 99%

On the Design of IoT Security: Analysis of Software Vulnerabilities for Smart Grids

et al. 2021

View full text Add to dashboard Cite

The 5G communication network will underpin a vast number of new and emerging services, paving the way for unprecedented performance and capabilities in mobile networks. In this setting, the Internet of Things (IoT) will proliferate, and IoT devices will be included in many 5G application contexts, including the Smart Grid. Even though 5G technology has been designed by taking security into account, design provisions may be undermined by software-rooted vulnerabilities in IoT devices that allow threat actors to compromise the devices, demote confidentiality, integrity and availability, and even pose risks for the operation of the power grid critical infrastructures. In this paper, we assess the current state of the vulnerabilities in IoT software utilized in smart grid applications from a source code point of view. To that end, we identified and analyzed open-source software that is used in the power grid and the IoT domain that varies in characteristics and functionality, ranging from operating systems to communication protocols, allowing us to obtain a more complete view of the vulnerability landscape. The results of this study can be used in the domain of software development, to enhance the security of produced software, as well as in the domain of automated software testing, targeting improvements to vulnerability detection mechanisms, especially with a focus on the reduction of false positives.

show abstract

“…Common access control flaws include the following i) Allowed forced browsing to pages requires authentication for unauthenticated users, or allows access to a highly privileged page from users with inadequate rights; in this category, the vulnerability occurred when some private pages (e.g., back up files, operations, and configuration files) does not have proper authentication and authorization policies which allow an intruder to exploit this flaw and accesses those restricted pages or resources through directly accessing their uniform resource locator (URL) bypassing the intended but not properly implemented normal authentication and authorization procedure; ii) Another type occurs when some specific functions that only intended to be accessed from a specific user role (e.g., bank approver role) while the application implementation allows the other user (e.g., maker role) to call the approving function directly to process an item despite the authorization level; iii) Another critical broken access control category occurs when a standard low-privileged user can gain increased privileges, such as being able to act as an administrator by tricking the application into thinking that the user is an administrator, this can take place through multiple scenarios including manipulating user session parameters or accessing admin portal functions and escalate the user or the session rights; iv) Another type of access control vulnerability in HTTP request methods occurs when an application fails to restrict access to certain HTTP methods (e.g., PUT request method or DELETE request method) which allows the intruder to utilize the web method to manipulate the application integrity and confidentiality; v) Other types of access control violations can especially exist in multi-step operations or workflows where the access control rules may be applied on specific steps but are not applied consistently on other steps moreover it may occur when contextual access control rules do not take into consideration the steps execution order and prerequisites steps for each specific step, a common example for this vulnerability is not preventing the modification of the shopping cart items after order bill calculation; and vi) Another major category of broken access control vulnerabilities is what is commonly named insecure direct object reference (IDOR) [10] which occurs when an application exposes a reference to an internal object directly without validating the request authentication and authorization parameters, as an example, consider a web application that allows the user to retrieve his personal information saved at a specific system using his national identification number (NIN) through the following web application sample URL (e.g., example.com/show_my_details/NIN/28889900001); however, a malicious actor can modify the NIN parameter in the URL to view other user's personal information through typing the target user's NIN (e.g., example.com/show_my_details/NIN/28889900002), this example can apply to other resources.…”

Section: Introductionmentioning

confidence: 99%

Survey on detecting and preventing web application broken access control attacks

Anas,

Elgamal,

Youssef

2024

IJECE

View full text Add to dashboard Cite

Web applications are an essential component of the current wide range of digital services proposition including financial and governmental services as well as social networking and communications. Broken access control vulnerabilities pose a huge risk to that echo system because they allow the attacker to circumvent the allocated permissions and rights and perform actions that he is not authorized to perform. This paper gives a broad survey of the current research progress on approaches used to detect access control vulnerabilities exploitations and attacks in web application components. It categorizes these approaches based on their key techniques and compares the different detection methods in addition to evaluating their strengths and weaknesses. We also spotted and elaborated on some exciting research gaps found in the current literature, Finally, the paper summarizes the general detection approaches and suggests potential research directions for the future.

show abstract

Identification and Illustration of Insecure Direct Object References and their Countermeasures

Cited by 6 publications

References 4 publications

Toward a readiness model for secure software coding

Toward a readiness model for secure software coding

On the Design of IoT Security: Analysis of Software Vulnerabilities for Smart Grids

Survey on detecting and preventing web application broken access control attacks

Contact Info

Product

Resources

About