International Journal of Science and Research (IJSR)

International Journal of Science and Research (IJSR)
Call for Papers | Fully Refereed | Open Access | Double Blind Peer Reviewed

ISSN: 2319-7064

Downloads: 5 | Views: 103 | Weekly Hits: ⮙2 | Monthly Hits: ⮙2

Research Paper | Financial Engineering | United States of America | Volume 7 Issue 7, July 2018 | Rating: 5.6 / 10


Dynamic Application Security Testing for Payment Applications: A Comprehensive Guide

Pavan Kumar Joshi [4]


Abstract: Dynamic Application Security Testing (DAST) plays a crucial role in identifying vulnerabilities in payment applications during their operational phase. As digital payment platforms evolve, security has become an ever-increasing priority, given the rising complexity of cyber threats. While payment applications provide essential services to users in the financial sector, their widespread accessibility makes them prime targets for cyberattacks. This paper explores the security challenges faced by payment applications and highlights the significance of DAST as an essential method for detecting and mitigating these vulnerabilities. The paper presents a comprehensive review of DAST methodologies, including application mapping, security scanning, vulnerability detection, and exploitation analysis, which help developers enhance the security of payment systems. Specific security risks, such as injection attacks, cross-site scripting (XSS), Insecure Direct Object References (IDOR), and misconfigurations, are examined to illustrate how DAST tools effectively detect these threats. Furthermore, the paper provides an in-depth evaluation of the most widely used DAST tools, analyzing their functionality and effectiveness in safeguarding financial data. By emphasizing the importance of integrating security testing into the development life cycle of payment applications, this paper aims to minimize customer risks and reinforce trust in digital payment systems. Ultimately, this study contributes to improving the overall security, reliability, and trustworthiness of payment applications, ensuring safer and more secure transactions for users.


Keywords: Dynamic Application Security Testing (DAST), payment application security, cybersecurity, Cross-Site Scripting (XSS), SQL injection. information security, application development life cycle, application vulnerabilities remediation


Edition: Volume 7 Issue 7, July 2018,


Pages: 1567 - 1573





Rate this Article


Select Rating (Lowest: 1, Highest: 10)

5

Your Comments

Characters: 0

Your Full Name:


Your Valid Email Address:


Verification Code will appear in 2 Seconds ... Wait

Top