Cross Site Scripting: Detection Approaches in Web Application

被引：0

作者：

Marashdih, Abdalla Wasef ^{[1
]}

Zaaba, Zarul Fitri ^{[1
]}

机构：

[1] Univ Sains Malaysia, Sch Comp Sci, Minden 11800, Pulau Pinang, Malaysia

来源：

INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS | 2016年 / 7卷 / 10期

关键词：

Web Application Security; Security; Software Security; Security Vulnerability; Cross Site Scripting; XSS; Genetic Algorithm; GA;

D O I：

暂无

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

Web applications have become one of the standard platforms for service releases and representing information and data over the World Wide Web. Thus, security vulnerabilities headed to various type of attacks in web applications. Amongst those is Cross Site Scripting also known as XSS. XSS can be considered as one of the most popular type of threat in web security application. XSS occurs by injecting the malicious scripts into web application, and it can lead to significant violations at the site or for the user. This paper highlights the issues (i.e. security and vulnerability) in web application specifically in regards to XSS. In addition, the future direction of research within this domain is highlighted.

引用

页码：155 / 160

页数：6

共 25 条

[1] Avancini A., 2010, P 2010 ICSE WORKSHOP, P65, DOI [10.1145/1809100.1809110, DOI 10.1145/1809100.1809110]
[2] Damodaran A., 2015, J COMPUTER VIROLOGY, P1, DOI [10.1007/s11416-015-0261-z, DOI 10.1007/S11416-015-0261-Z]
[3] Dong GW, 2014, INT JOINT CONF COMP, P319, DOI 10.1109/JCSSE.2014.6841888
[4] Duchene F., 2012, 2012 IEEE Fifth International Conference on Software Testing, Verification and Validation (ICST 2012), P815, DOI 10.1109/ICST.2012.181
[5] A Practical Experience on the Impact of Plugins in Web Security
Fonseca, Jose
Vieira, Marco
[J]. 2014 IEEE 33RD INTERNATIONAL SYMPOSIUM ON RELIABLE DISTRIBUTED SYSTEMS (SRDS), 2014, : 21 - 30
[6] Govil, 2014, RECENT ADV INNOVATIO, P9, DOI [10.1109/ICRAIE.2014.6909173, DOI 10.1109/ICRAIE.2014.6909173]
[7] XSS Vulnerability Detection Using Optimized Attack Vector Repertory
Guo, Xiaobing
Jin, Shuyuan
Zhang, Yaxing
[J]. 2015 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY, 2015, : 29 - 36
[8] Gupta B, 2015, CROSS SITE SCRIPTING
[9] Gupta MK, 2015, INT JOINT CONF COMP, P162, DOI 10.1109/JCSSE.2015.7219789
[10] Gupta P, 2011, COMM COM INF SC, V198, P122

← 1 2 3 →