UPM Institutional Repository

Cross-site scripting detection based on an enhanced genetic algorithm


Hydara, Isatou and Md Sultan, Abu Bakar and Zulzalil, Hazura and Admodisastro, Novia Indriaty (2015) Cross-site scripting detection based on an enhanced genetic algorithm. In: 4th International Conference on Computer Science and Computational Mathematics (ICCSCM 2015), 7-8 May 2015, Langkawi, Malaysia. (pp. 654-659).


Software security vulnerabilities have led to many successful attacks on applications, especially web applications, on a daily basis. These attacks, including cross-site scripting, have caused damages for both web site owners and users. Cross-site scripting vulnerabilities are easy to exploit but difficult to mitigate. Many solutions have been proposed for their detection. However, the problem of cross-site scripting vulnerabilities present in web applications still persists. In this paper, we propose to explore an approach based on genetic algorithms that will be able to detect cross-site scripting vulnerabilities in the source code before an application is deployed. The proposed approach is, so far, only implemented and validated on Java-based Web applications, although it can be implemented in other programming languages with slight modifications. Initial evaluations have indicated promising results.

Download File

[img] Text
Restricted to Repository staff only

Download (374kB)

Additional Metadata

Item Type: Conference or Workshop Item (Paper)
Divisions: Faculty of Computer Science and Information Technology
Publisher: Science and Knowledge Research Society
Keywords: Cross-site scripting; Genetic algorithm; Software security; Vulnerability detection
Depositing User: Nabilah Mustapa
Date Deposited: 06 Mar 2019 05:35
Last Modified: 06 Mar 2019 05:35
URI: http://psasir.upm.edu.my/id/eprint/67005
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item