Legacy systems are likely to contain software vulnerabilities that can lead to various security breaches. On the other hand, these systems contain valuable information about the environment, the creation and the evolution of the organization they support. For this reason, redesigning large systems in order to be secure and compatible with new technologies is not a practical option, since the information mentioned above could be lost. In addition the cost of replacing such system and retrain its various users, could be prohibitive.
In this project we propose a framework that shields legacy systems based on two basic steps:
- First, our framework analyzes the source code of the system to identify potential software vulnerabilities and eliminates them.
- Then, depending on the previous analysis the framework proposes solutions to protect the system from the most common web-application attacks.