Reference : Vulnerabilities of Government Websites in a Developing Country – The Case of Burkina Faso
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/19991
Vulnerabilities of Government Websites in a Developing Country – The Case of Burkina Faso
English
Bissyande, Tegawendé François D Assise mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Ouoba, Jonathan []
Ahmat, Daouda []
Ouédraogo, Fréderic []
Béré, Cédric []
Bikienga, Moustapha []
Sere, Abdoulaye []
Dandjinou, Mesmin []
Sié, Oumarou []
Dec-2015
7th International Conference on e‐Infrastructure and e‐Services for Developing Countries
Yes
International
AFRICOMM' 2015
from 15-12-2015 to 17-12-2015
[en] e-government ; web security ; vulnerabilities ; CMS ; developing countries
[en] Slowly, but consistently, the digital gap between developing and developed countries is being closed. Everyday, there are initiatives towards relying on ICT to simplify the interaction between citizens and their governments in developing countries. E-government is thus becoming a reality: in Burkina Faso, all government bodies are taking part in this movement with web portals dedicated to serving the public. Unfortunately, in this rush to promote government actions within this trend of digitization, little regards is given to the security of such web sites. In many cases, government highly critical web sites are simply produced in a product line fashion using Content Management Systems which the webmasters do not quite master. We discuss in this study our findings on empirically assessing the security of govern- ment websites in Burkina Faso. By systematically scanning these websites for simple and well-known vulnerabilities, we were able to discover issues that deserved urgent attention. As an example, we were able to crawl from temporary backup files in a government web site all information (hostname, login and password in clear) to read and write directly in the database and for impersonating the administrator of the website. We also found that around 50% of the government websites are built on top of platforms suffering from 14 publicly known vulnerabilities, and thus can be readily attacked by any hacker.
Researchers ; Professionals ; Students ; General public
http://hdl.handle.net/10993/19991

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
article.pdfPublisher postprint623.98 kBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.