Indian Journal of Science and Technology
Year: 2015, Volume: 8, Issue: 30, Pages: 1-7
Isatou Hydara*, Abu Bakar Md Sultan, Hazura Zulzalil and Novia Admodisastro
Department of Software Engineering and Information System, Faculty of Computer Science and Information Technology, Universiti Putra Malaysia, UPM, Serdang - 43400, Selangor, Malaysia; [email protected]
Software security vulnerabilities have led to many successful attacks on applications, especially web applications, on a daily basis. These attacks, including cross-site scripting, have caused damages for both web site owners and users. Cross-site scripting vulnerabilities are easy to exploit but difficult to mitigate. Many solutions have been proposed for their detection. However, the problem of cross-site scripting vulnerabilities present in web applications still persists. In this paper, we propose to explore an approach based on genetic algorithms that will be able to detect cross-site scripting vulnerabilities in the source code before an application is deployed. The proposed approach is, so far, only implemented and validated on Java-based web applications, although it can be implemented in other programming languages with slight modifications. Initial evaluations have indicated promising results.
Keywords: Cross-Site Scripting, Genetic Algorithm, Software Security, Vulnerability Detection
Subscribe now for latest articles and news.