An approach for cross-site scripting detection and removal based on genetic algorithms.
Software security vulnerabilities have led to many successful attacks on applications, on a daily basis. These attacks, including cross-site scripting, have caused damages for both web site owners and users. Cross-site scripting vulnerabilities are easy to exploit but difficult to eliminate. Many so...
| Main Authors: | , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Published: |
2014
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/32711/ http://psasir.upm.edu.my/id/eprint/32711/1/32711.pdf |
| _version_ | 1848847279936503808 |
|---|---|
| author | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia |
| author_facet | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia |
| author_sort | Hydara, Isatou |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Software security vulnerabilities have led to many successful attacks on applications, on a daily basis. These attacks, including cross-site scripting, have caused damages for both web site owners and users. Cross-site scripting vulnerabilities are easy to exploit but difficult to eliminate. Many solutions have been proposed for their detection. However, the problem of cross-site scripting vulnerabilities present in web applications still persists. In this paper, we propose to explore an approach based on genetic algorithms that will be able to detect and remove cross-site scripting vulnerabilities from the source code before an application is deployed. The proposed approach is, so far, only implemented and validated on Java-based Web applications, although it can be implemented in other programming languages with slight modifications. Initial evaluations have indicated promising results. |
| first_indexed | 2025-11-15T09:16:05Z |
| format | Conference or Workshop Item |
| id | upm-32711 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T09:16:05Z |
| publishDate | 2014 |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-327112014-12-12T08:33:56Z http://psasir.upm.edu.my/id/eprint/32711/ An approach for cross-site scripting detection and removal based on genetic algorithms. Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Software security vulnerabilities have led to many successful attacks on applications, on a daily basis. These attacks, including cross-site scripting, have caused damages for both web site owners and users. Cross-site scripting vulnerabilities are easy to exploit but difficult to eliminate. Many solutions have been proposed for their detection. However, the problem of cross-site scripting vulnerabilities present in web applications still persists. In this paper, we propose to explore an approach based on genetic algorithms that will be able to detect and remove cross-site scripting vulnerabilities from the source code before an application is deployed. The proposed approach is, so far, only implemented and validated on Java-based Web applications, although it can be implemented in other programming languages with slight modifications. Initial evaluations have indicated promising results. 2014 Conference or Workshop Item NonPeerReviewed application/pdf en http://psasir.upm.edu.my/id/eprint/32711/1/32711.pdf Hydara, Isatou and Md Sultan, Abu Bakar and Zulzalil, Hazura and Admodisastro, Novia (2014) An approach for cross-site scripting detection and removal based on genetic algorithms. In: The Ninth International Conference on Software Engineering Advances - ICSEA 2014, 12-16 Oct. 2014, Nice, France. (pp. 227-232). |
| spellingShingle | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia An approach for cross-site scripting detection and removal based on genetic algorithms. |
| title | An approach for cross-site scripting detection and removal based on genetic algorithms. |
| title_full | An approach for cross-site scripting detection and removal based on genetic algorithms. |
| title_fullStr | An approach for cross-site scripting detection and removal based on genetic algorithms. |
| title_full_unstemmed | An approach for cross-site scripting detection and removal based on genetic algorithms. |
| title_short | An approach for cross-site scripting detection and removal based on genetic algorithms. |
| title_sort | approach for cross-site scripting detection and removal based on genetic algorithms. |
| url | http://psasir.upm.edu.my/id/eprint/32711/ http://psasir.upm.edu.my/id/eprint/32711/1/32711.pdf |