Countering Cross-Site Scripting in Web-based Applications

Loye Lynn Ray

首页> 外文期刊>International journal of strategic information technology and applications >Countering Cross-Site Scripting in Web-based Applications

【24h】

Countering Cross-Site Scripting in Web-based Applications

机译：在基于Web的应用程序中对抗跨站点脚本

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Today's dynamic web-based applications have become a normal and critical asset to an organizations business. They come with an increase in the number of web vulnerabilities and attacks. These weaknesses allow hackers to focus their attention on attacking this important information source. The most common vulnerability is cross-site scripting (XSS) and one of the Open Web Application Security project (OWASP) top ten web-threats. XSS occurs when a Web-based application allows untrusted information be accepted and sent back to a browser. Also they can execute scripts within a browser that can deface web sites, redirect users to malicious content and hijack browsers. One reason for this problem was the lack of developers understanding the causes of XSS. In this paper, the author address the causes of XSS and countermeasures to defense against these threats.

机译：如今，基于Web的动态应用程序已成为组织业务的一项正常且至关重要的资产。它们带来了更多的网络漏洞和攻击。这些弱点使黑客可以将注意力集中在攻击此重要信息源上。最常见的漏洞是跨站点脚本（XSS）和开放Web应用程序安全性项目（OWASP）十大Web威胁之一。当基于Web的应用程序允许接受不受信任的信息并将其发送回浏览器时，就会发生XSS。他们还可以在浏览器中执行脚本，这些脚本可以污损网站，将用户重定向到恶意内容并劫持浏览器。出现此问题的原因之一是开发人员缺乏对XSS原因的理解。在本文中，作者阐述了XSS的原因以及防御这些威胁的对策。

著录项

来源
《International journal of strategic information technology and applications》 |2015年第1期|57-68|共12页
作者
Loye Lynn Ray;
展开▼
作者单位

CSIA, University of Maryland University College, Adelphi, MD, USA;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Cross-Site Scripting; Input Validation; Reflected XSS; Scripting; Stored XSS; Web Proxy;

机译：跨站脚本;输入验证;反映的XSS;脚本;存储的XSS;网络代理;

相似文献

外文文献
中文文献
专利

1. Plague of cross-site scripting on web applications: a review, taxonomy and challenges [J] . Pooja Chaudhary, B.B. Gupta International Journal of Web Based Communities . 2018,第1期

机译：Web应用程序上跨站点脚本的瘟疫：回顾，分类法和挑战
2. Detecting Cross-Site Scripting in Web Applications Using Fuzzy Inference System [J] . Bakare K. Ayeni, Junaidu B. Sahalu, Kolawole R. Adeyanju Journal of computer systems, networks, and communications . 2018,第Suppla2期

机译：使用模糊推理系统检测Web应用程序中的跨站点脚本
3. Detecting Cross-Site Scripting in Web Applications Using Fuzzy Inference System [J] . Bakare K. Ayeni, Junaidu B. Sahalu, Kolawole R. Adeyanju Journal of computer networks and communications . 2018,第1期

机译：使用模糊推理系统检测Web应用程序中的跨站点脚本
4. Prevention of Cross-Site Scripting Attacks in Web Applications [C] . Mahmoud Elkhodr, Jay K. Patel, Mehregan Mahdavi, International Conference on Advanced Information Networking and Applications . 2020

机译：预防Web应用程序中的跨站点脚本攻击
5. A unified cyber-enhanced approach for detecting cross-site scripting attacks on Web applications [D] . Gurijala, Bhanukiran 2016

机译：一种用于检测Web应用程序上跨站点脚本攻击的统一的网络增强方法
6. Sequence2Script: A Web-Based Tool for Translation of Pharmacogenetic Data Into Evidence-Based Prescribing Recommendations [O] . Chad A. Bousman, Patrick Wu, Katherine J. Aitchison, 2021

机译：sequence2script：一种基于网络的基于Web的药物生成数据转换为基于证据的规定建议的工具
7. Towards Cross-site Scripting Vulnerability Detection in Mobile Web Applications [O] . Isatou Hydara, Abu Bakar Md Sultan, Hazura Zulzalil, 2018

机译：朝向移动Web应用程序中的跨站点脚本漏洞检测

Countering Cross-Site Scripting in Web-based Applications

摘要

著录项

相似文献

相关主题

期刊订阅