Web Security: Detection of Cross Site Scripting in PHP Web Application using Genetic Algorithm
Journal Title: International Journal of Advanced Computer Science & Applications - Year 2017, Vol 8, Issue 5
Abstract
Cross site scripting (XSS) is one of the major threats to the web application security, where the research is still underway for an effective and useful way to analyse the source code of web application and removes this threat. XSS occurs by injecting the malicious scripts into web application and it can lead to significant violations at the site or for the user. Several solutions have been recommended for their detection. However, their results do not appear to be effective enough to resolve the issue. This paper recommended a methodology for the detection of XSS from the PHP web application using genetic algorithm (GA) and static analysis. The methodology enhances the earlier approaches of determining XSS vulnerability in the web application by eliminating the infeasible paths from the control flow graph (CFG). This aids in reducing the false positive rate in the outcomes. The results of the experiments indicated that our methodology is more effectual in detecting XSS vulnerability from the PHP web application compared to the earlier studies, in terms of the false positive rates and the concrete susceptible paths determined by GA Generator.
Authors and Affiliations
Abdalla Wasef Marashdih, Zarul Fitri Zaaba, Herman Khalid Omer
Keywords
Related Articles
- EP ID EP258610
- DOI 10.14569/IJACSA.2017.080509
- Views 72
- Downloads 0
Intrusion Detection System with Correlation Engine and Vulnerability Assessment
The proposed Intrusion Detection System (IDS) which is implemented with modern technologies to address certain prevailing problems in existing intrusion detection systems’ is capable of giving an advanced output to the s...
A Proposed Framework to Investigate the User Acceptance of Personal Health Records in Malaysia using UTAUT2 and PMT
Personal Health Records (PHRs) can be considered as one of the most important health technologies. PHRs enroll the patients directly to their health decision making through giving them the authority to control and share...
Micro Sourcing Strategic Framework for Low Income Group
The role of ICTs among poor people and communities has increased tremendously. One of the ICT industries – the micro sourcing industry – has been identified as one of a potential industry to help increase income for the...
Delay-Decomposition Stability Approach of Nonlinear Neutral Systems with Mixed Time-Varying Delays
This paper deals with the asymptotic stability of neutral systems with mixed time-varying delays and nonlinear perturbations. Based on the Lyapunov–Krasovskii functional including the triple integral terms and free weigh...
Performance Analysis of Machine Learning Techniques on Software Defect Prediction using NASA Datasets
Defect prediction at early stages of software development life cycle is a crucial activity of quality assurance process and has been broadly studied in the last two decades. The early prediction of defective modules in d...