UPM Institutional Repository

Dynamic feature selection model for adaptive cross site scripting attack detection using developed multi-agent deep Q learning model


Citation

Kareem Thajeel, Isam and Samsudin, Khairulmizam and Hashim, Shaiful Jahari and Hashim, Fazirulhisyam (2023) Dynamic feature selection model for adaptive cross site scripting attack detection using developed multi-agent deep Q learning model. Journal of King Saud University-Computer and Information Sciences, 35 (6). art. no. 101490. pp. 1-33. ISSN 1319-1578; eISSN: 2213-1248

Abstract

Web applications popularity has raised attention in various service domains, which increased the concern about cyber-attacks. One of these most serious and frequent web application attacks is a Cross-site scripting attack (XSS). It causes grievous harm to victims. Existing security methods against XSS fail due to the evolving nature of XSS attacks. One evolving aspect of XSS attacks is feature drift which changes the feature relevancy and causes degradation in the performance. Unfortunately, dynamic awareness of drift occurrence is missing. Thus, this study attempts to fill the gap by proposing a feature drift-aware algorithm for detecting the evolved XSS attacks. The proposed approach is a dynamic feature selection based on a deep Q-network multi-agent feature selection (DQN-MAFS) framework. Each agent is associated with one feature and is responsible for selecting or deselecting its feature. DQN-MAFS provides a sub-model for reward distribution over agents, which is named as fair agent reward distribution based dynamic feature selection FARD-DFS. This framework is capable of supporting real-time, dynamic updates and adjustment of embedded knowledge as long as new labelled data arrives. DQN-MAFS has been evaluated using four real XSS attack datasets with various feature length sizes. The evaluation process was conducted and compared with state-of-the-art works. The obtained results show the superiority of our FARD-DFS over the benchmarks in terms of the majority of metrics. The improvement percentages of the mean accuracy and F1-measure ranged from 1.01 to 12.1 and from 0.55 to 6.88, respectively, in comparison with the benchmarks. This approach can be deployed as an autonomous detection system without the need for any offline retraining process of the model to detect the evolved XSS attack.


Download File

[img] Text
107421.pdf - Published Version
Available under License Creative Commons Attribution Non-commercial No Derivatives.

Download (2MB)

Additional Metadata

Item Type: Article
Divisions: Faculty of Engineering
DOI Number: https://doi.org/10.1016/j.jksuci.2023.01.012
Publisher: Elsevier
Keywords: Cross-site scripting (XSS) attack; Web application security; Feature drift; Dynamic feature selection; Multi-agent reinforcement learning; Industry; Innovation and infrastructure
Depositing User: Ms. Nur Faseha Mohd Kadim
Date Deposited: 21 Oct 2024 01:46
Last Modified: 21 Oct 2024 01:46
Altmetrics: http://www.altmetric.com/details.php?domain=psasir.upm.edu.my&doi=10.1016/j.jksuci.2023.01.012
URI: http://psasir.upm.edu.my/id/eprint/107421
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item