Vulnerabilities of Government Websites in a Developing Country – The Case of Burkina Faso

Abstract : Slowly, but consistently, the digital gap between developing and developed countries is being closed. Everyday, there are initiatives towards relying on ICT to simplify the interaction between citizens and their governments in developing countries. E-government is thus becoming a reality: in Burkina Faso, all government bodies are taking part in this movement with web portals dedicated to serving the public. Unfortunately, in this rush to promote government actions within this trend of digitization, little regards is given to the security of such web sites. In many cases, government highly critical web sites are simply produced in a product line fashion using Content Management Systems which the webmasters do not quite master. We discuss in this study our findings on empirically assessing the security of government websites in Burkina Faso. By systematically scanning these websites for simple and well-known vulnerabilities, we were able to discover issues that deserved urgent attention. As an example, we were able to crawl from temporary backup files in a government web site all information (hostname, login and password in clear) to read and write directly in the database and for impersonating the administrator of the website. We also found that around 50% of the government websites are built on top of platforms suffering from 14 publicly known vulnerabilities, and thus can be readily attacked by any hacker.
Document type :
Conference papers
Complete list of metadatas

Cited literature [12 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-01250198
Contributor : Tegawendé F. Bissyandé <>
Submitted on : Monday, January 4, 2016 - 3:11:35 PM
Last modification on : Thursday, February 7, 2019 - 1:48:02 PM
Long-term archiving on : Thursday, November 10, 2016 - 8:02:22 PM

File

article (1).pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01250198, version 1

Citation

Tegawendé F. Bissyandé, Jonathan Ouoba, Daouda Ahmat, Fréderic Ouédraogo, Cedric Béré, et al.. Vulnerabilities of Government Websites in a Developing Country – The Case of Burkina Faso. Seventh International EAI Conference on e‐infrastructure and e‐Services for Developing Countries (AFRICOMM 2015), EAI, Dec 2015, Cotonou, Benin. pp.11-14. ⟨hal-01250198⟩

Share

Metrics

Record views

135

Files downloads

460