ImageSubXSS: an image substitute technique to prevent Cross-Site Scripting attacks
Saved in:
| Title: | ImageSubXSS: an image substitute technique to prevent Cross-Site Scripting attacks |
|---|---|
| Authors: | Nagarjun, PMD, Ahamad, Shaik Shakeel |
| Source: | International Journal of Electrical and Computer Engineering (IJECE); Vol 9, No 2: April 2019; 1393-1398 ; 2722-2578 ; 2088-8708 ; 10.11591/ijece.v9i2 |
| Publisher Information: | Institute of Advanced Engineering and Science |
| Publication Year: | 2019 |
| Subject Terms: | Computer and Informatics, Telecommunication, cross-site scripting, web application attacks, imageSubXSS, malicious javaScript, XSS attacks |
| Description: | Cross-Site Scripting (XSS) is one of serious web application attack. Web applications are involved in every activity of human life. JavaScript plays a major role in these web applications. In XSS attacks hacker inject malicious JavaScript into a trusted web application, execution of that malicious script may steal sensitive information from the user. Previous solutions to prevent XSS attacks require a lot of effort to integrate into existing web applications, some solutions works at client-side and some solutions works based on filter list which needs to be updated regularly. In this paper, we propose an Image Substitute technique (ImageSubXSS) to prevent Cross-Site Scripting attacks which works at the server-side. The proposed solution is implemented and evaluated on a number of XSS attacks. With a single line, developers can integrate ImageSubXSS into their applications and the proposed solution is able to prevent XSS attacks effectively. |
| Document Type: | article in journal/newspaper |
| File Description: | application/pdf |
| Language: | English |
| Relation: | https://ijece.iaescore.com/index.php/IJECE/article/view/12849/11769; https://ijece.iaescore.com/index.php/IJECE/article/view/12849 |
| DOI: | 10.11591/ijece.v9i2.pp1393-1398 |
| Availability: | https://ijece.iaescore.com/index.php/IJECE/article/view/12849 https://doi.org/10.11591/ijece.v9i2.pp1393-1398 |
| Rights: | Copyright (c) 2019 PMD Nagarjun, Shaik Shakeel Ahamad ; http://creativecommons.org/licenses/by-sa/4.0 |
| Accession Number: | edsbas.6DC5883B |
| Database: | BASE |
Nájsť tento článok vo Web of Science | Abstract: | Cross-Site Scripting (XSS) is one of serious web application attack. Web applications are involved in every activity of human life. JavaScript plays a major role in these web applications. In XSS attacks hacker inject malicious JavaScript into a trusted web application, execution of that malicious script may steal sensitive information from the user. Previous solutions to prevent XSS attacks require a lot of effort to integrate into existing web applications, some solutions works at client-side and some solutions works based on filter list which needs to be updated regularly. In this paper, we propose an Image Substitute technique (ImageSubXSS) to prevent Cross-Site Scripting attacks which works at the server-side. The proposed solution is implemented and evaluated on a number of XSS attacks. With a single line, developers can integrate ImageSubXSS into their applications and the proposed solution is able to prevent XSS attacks effectively. |
|---|---|
| DOI: | 10.11591/ijece.v9i2.pp1393-1398 |