Traversing Model Design Based on Strong-Association Rule for Web Application Vulnerability Detection

With more important function in information society, software dependability has been in higher demand. Web application vulnerability has become one of the biggest threats for software security. Detecting and solving vulnerability is the effective way to enhance software dependability. Most active method traverses all Web links and interactive units in traversing step, which is easy to cause low efficiency and no pertinence. This paper focuses on characteristic of Web application, especially Web pages and presents one traversing model based on high-related rule, which make detection more efficient. From hackerpsilas view, this model applies the HITS algorithm to generating a series of pages which may be used by hackers as attacking. Due to ignoring content in Web pages for HITS algorithm, we adapt improved Apriori algorithm to get optimized frequency set, on basis of which we deduce high-related rule between properties of interactive unit and way of attacking. Finally, this paper presents the traversing model for Web application vulnerability detection.