摘要 |
The present invention relates to a method for constituting a web hacking response procedure based on an XSS (Cross-site Scripting) process diagnosis, including: (a) a step for constituting a framework of a response procedure for corresponding to a web hacking; (b) a step for setting security items during the structural design of a web system; (c) a step for setting security items regarding a software architecture during the development of a program; (d) a step for setting the level of security items in the process of system operation; and (e) a step for constituting the security items during the use by a user. By the method for designing the web hacking response procedure, the response procedure can comprise multiple stages, thereby increasing security efficiency through secured coding based on the life cycle of development, and establishing an integrated and systematic onsite response by systematizing the security implementations during the use by a user. |