Malicious XSS Code Detection with Decision Tree

Home Page
About
Submit A Journal
Submit A Conference
Submit Paper/Book
- Submit a Preprint
- Submit a Book
Contact

Politeknik Dergisi
Volume:23 Issue:1
Malicious XSS Code Detection with Decision Tree

Malicious XSS Code Detection with Decision Tree

Pages : 67-72

View : 34 | Download : 10

Publication Date : 2020-03-01

Article Type : Research Paper

Abstract :Dynamic applications such as e-commerce, blogs, forums, e-governance, e-banking and portals that are in these platforms have become a part of our lives. However, a tremendous increase in the use of dynamic web and mobile applications has resulted in security vulnerabilities originating from the Hypertext Markup Language insert ignore into journalissuearticles values(HTML); coding system. Site-to-site Script Execution insert ignore into journalissuearticles values(XSS); attack is the largest contributors to security exploits. There are different models according to the dynamic content that XSS attacks use. The interest of the study is composed of attacks on visual content with the `img` tag. In study, an algorithm has been developed to detect XSS attacks with the decision tree which is motivated by the fact that they tend to be easier to implement and interpret than other quantitative data-driven methods. The algorithm that successfully classifies 392 of 400 malicious and clean codes in the data set with 8 different features. This result contributes to the use of secure internet without XSS attacks that use visual content..
Keywords : Security Vulnerability, XSS Attacks, Feature Extraction, Decision Tree

ORIGINAL ARTICLE URL

* There may have been changes in the journal, article,conference, book, preprint etc. informations. Therefore, it would be appropriate to follow the information on the official page of the source. The information here is shared for informational purposes. IAD is not responsible for incorrect or missing information.