随着各行各业信息化建设和互联网概念的不断深化,越来越多的安全问题也随之而来.为此,通过对医疗行业Web应用程序的渗透测试,参照OWASP TOP 10安全风险分类,分析现阶段医疗行业Web应用程序存在的安全隐患,并给出常见漏洞的描述、实例和防范措施,为医疗行业乃至其他各个行业的Web应用程序安全风险评估提供一定的参考和依据.%With the development of internet and information technology,there are more and more security problems and risks which are very important to avoid and overcome. Referring to OWASP TOP 10,penetration testing based on web application in medi?cal industry as an example to analysis the risks of web applications is taken. With the descriptions,examples and solutions of differ?ent kinds of vulnerabilities and risks in this paper,the results of penetration testing can make a reference to the research about the security of web applications in all kinds of industries.
展开▼