Web Security: Detection of Cross Site Scripting in PHP Web Application using Genetic Algorithm

Abstract

Cross site scripting (XSS) is one of the major threats to the web application security, where the research is still underway for an effective and useful way to analyse the source code of web application and removes this threat. XSS occurs by injecting the malicious scripts into web application and it can lead to significant violations at the site or for the user. Several solutions have been recommended for their detection. However, their results do not appear to be effective enough to resolve the issue. This paper recommended a methodology for the detection of XSS from the PHP web application using genetic algorithm (GA) and static analysis. The methodology enhances the earlier approaches of determining XSS vulnerability in the web application by eliminating the infeasible paths from the control flow graph (CFG). This aids in reducing the false positive rate in the outcomes. The results of the experiments indicated that our methodology is more effectual in detecting XSS vulnerability from the PHP web application compared to the earlier studies, in terms of the false positive rates and the concrete susceptible paths determined by GA Generator.

Authors and Affiliations

Abdalla Wasef Marashdih, Zarul Fitri Zaaba, Herman Khalid Omer

Keywords

Related Articles

 Simultaneous Estimation of Geophysical Parameters with Microwave Radiometer Data based on Accelerated Simulated Annealing: SA

 Method for geophysical parameter estimations with microwave radiometer data based on Simulated Annealing: SA is proposed. Geophysical parameters which are estimated with microwave radiometer data are closely relate...

Evaluating Factors for Predicting the Life Dissatisfaction of South Korean Elderly using Soft Margin Support Vector Machine based on Communication Frequency, Social Network Health Behavior and Depression

Since health and the quality of life are caused not by a single factor but by the interaction of multiple factors, it is necessary to develop a model that can predict the quality of life using multiple risk factors rathe...

A New Project Risk Management Model based on Scrum Framework and Prince2 Methodology

With increasing competition in the software industry, software companies need to effectively manage the risks of software projects with minimal time and cost to deliver high quality products. High frequencies of warning...

Anonymized Social Networks Community Preservation

Social Networks have been widely used in the society. Most of the people are connected to one another, communicated with each other and share the information in different forms. The information gathered from different so...

Software Bug Prediction using Machine Learning Approach

Software Bug Prediction (SBP) is an important issue in software development and maintenance processes, which concerns with the overall of software successes. This is because predicting the software faults in earlier phas...

Download PDF file
  • EP ID EP258610
  • DOI 10.14569/IJACSA.2017.080509
  • Views 90
  • Downloads 0

How To Cite

Abdalla Wasef Marashdih, Zarul Fitri Zaaba, Herman Khalid Omer (2017). Web Security: Detection of Cross Site Scripting in PHP Web Application using Genetic Algorithm. International Journal of Advanced Computer Science & Applications, 8(5), 64-75. https://europub.co.uk/articles/-A-258610