Date Added: Dec 2011
Web applications have become very popular in nowadays. Web applications can be error prone and easily exploited by attackers, because of the implementation vulnerabilities. Securing web applications against implementation vulnerabilities is very important. Existing security solutions do not provide adequate support to protect web applications against broken session data dependencies in this paper the authors focus on one specific type of implementation vulnerability, namely broken dependencies on session data along with session data dependent vulnerabilities. This can be lead to a variety of erroneous behavior at runtime. This paper shows how to guarantee the absence of runtime errors due to broken session data dependencies. The proposed solution provides the tree-based dependency to prove no-broken-data-dependencies property.