Title :
Design and development of Anti-XSS proxy
Author :
Shahriar, Hossain ; North, Steve ; Wei-Chuen Chen ; Mawangi, Edward
Author_Institution :
Dept. of Comput. Sci., Kennesaw State Univ., Kennesaw, GA, USA
Abstract :
Cross-Site Scripting (XSS) vulnerability allows an attacker to inject arbitrary JavaScript code that can be executed in the victim´s browser and cause security breaches. The discovery of XSS is still widespread among today´s web applications. As a result, there is a need to improve existing solutions or develop novel attack detection techniques. This paper proposes a proxy-level design and development of XSS attack detection approach (Anti-XSS) based on Kullback-Leibler Divergence (KLD) measure. The proposed approach has been applied for a number of open-source PHP web applications containing XSS vulnerabilities. The initial results show that the approach can effectively detect XSS attacks while displaying a low false positive rate depending on the choice of threshold values of KLD.
Keywords :
Internet; Java; authoring languages; public domain software; security of data; JavaScript code; KLD measure; Kullback-Leibler divergence measure; XSS attack detection approach; anti-XSS proxy; attack detection techniques; cross-site scripting vulnerability; low false positive rate; open-source PHP Web applications; proxy-level design; security breaches; victim browser; Browsers; Cascading style sheets; Servers; Cross-Site Scripting; Information theory; Kullback-Leibler Divergence; Web security;
Conference_Titel :
Internet Technology and Secured Transactions (ICITST), 2013 8th International Conference for
Conference_Location :
London
DOI :
10.1109/ICITST.2013.6750247
