Title :
Preventing persistent Cross-Site Scripting (XSS) attack by applying pattern filtering approach
Author :
Yusof, Imran ; Pathan, Al-Sakib Khan
Author_Institution :
Dept. of Comput. Sci., Int. Islamic Univ. Malaysia, Kuala Lumpur, Malaysia
Abstract :
Cross-Site Scripting (XSS) vulnerability is one of the most widespread security problems for web applications, which has been haunting the web application developers for years. Various approaches to defend against attacks (that use XSS vulnerabilities) are available today but no single approach solves all the loopholes. After investigating this area, we have been motivated to propose an efficient approach to prevent persistent XSS attack by applying pattern filtering method. In this work, along with necessary background, we present case studies to show the effectiveness of our approach.
Keywords :
Web sites; computer network security; information filtering; Web application developer; XSS vulnerability; computer security vulnerability; cross-site scripting; pattern filtering method; persistent XSS attack prevention; Browsers; Information filters; Payloads; Security; Vectors; cross-site; filtering; pattern; persistent; scripting; vulnerability; web;
Conference_Titel :
Information and Communication Technology for The Muslim World (ICT4M), 2014 The 5th International Conference on
Conference_Location :
Kuching
DOI :
10.1109/ICT4M.2014.7020628
