Recent Attack Prevention Techniques in Web Service Applications

Internet security is very challenging task because internet is become very much essential part of human life. Most of the attacks are happen at application layer which causes the security of applications. Such internet based applications includes banking, defense, education, medicine etc, which require high level security. This paper explains basic types of attacks which harmful for web applications like, cross Site Scripting attack, cross site request forgery, SQL Injection Attack, Server Misconfiguration and Predictable Page, Breaking Authentication Schemes, Logic Attacks, Web of Distrust. Now a day, most of the application development is based on XML. This paper described XML based application attack including Xpatth injection, Xquery injection and XSS injection in details. We also make survey of various traditional and recent approaches to detect, prevent and remove the web application attacks. We compare these applications based on technique used to detect attack, which type of attack they resolve, to check the approach which dataset they used and finally provide the limitation of that system and respective future directions. This will helpful for researchers for further research in respective field.