Title :
Optimized client side solution for cross site scripting
Author :
Tiwari, Siddharth ; Bansal, Richa ; Bansal, Divya
Author_Institution :
Dept. of Comput. Sci. & Eng., Punjab Eng. Coll., Chandigarh, India
Abstract :
The rapid growth of internet resulted in feature rich, dynamic Web applications. This increase in features also introduced completely new underestimated attack vectors. Cross site scripting (XSS) attacks are currently the most exploited security problems in modern Web applications. These attacks make use of vulnerabilities in the code of Web-applications, resulting in serious consequences, such as theft of cookies, passwords and other personal credentials. It is caused by scripts, which do not sanitize user input. Several server-side countermeasures for XSS attacks do exist, but such techniques have not been universally applied, because of their deployment overhead. The existing client-side solutions degrade the performance of client¿s system resulting in a poor Web surfing experience. This paper introduces a client side solution that uses a step by step approach to detect XSS, without degrading much the user¿s Web browsing experience.
Keywords :
Internet; online front-ends; security of data; Web surfing; client-side solution; cross site scripting attack; dynamic Web application; server-side countermeasures; user Web browsing; Application software; Computer science; Data security; Degradation; Educational institutions; HTML; Information security; Internet; Java; Web server;
Conference_Titel :
Networks, 2008. ICON 2008. 16th IEEE International Conference on
Conference_Location :
New Delhi
Print_ISBN :
978-1-4244-3805-1
DOI :
10.1109/ICON.2008.4772647
