Auditing the XSS defence features implemented in web application programs

Auditing the XSS defence features implemented in web application programs

Cross site scripting (XSS) vulnerability is mainly caused by the failure of web applications in sanitising user inputs embedded in web pages. Even though state-of-the-art defensive coding methods and vulnerability detection methods are often used by developers and security auditors, XSS flaws still...

Full description

Saved in:

Bibliographic Details
Main Authors:	Shar, Lwin Khin, Tan, Hee Beng Kuan
Other Authors:	School of Electrical and Electronic Engineering
Format:	Article
Language:	English
Published:	2013
Subjects:	DRNTU::Engineering::Computer science and engineering::Data
Online Access:	https://hdl.handle.net/10356/107173 http://hdl.handle.net/10220/16667 http://dx.doi.org/10.1049/iet-sen.2011.0084
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Nanyang Technological University
Language:	English

Similar Items

Auditing the XSS defence features implemented in web application programs
by: SHAR, Lwin Khin, et al.
Published: (2012)

Streamlined security framework for defence against XSS attacks targeted at HTML5
by: Cheng, Chi Chung.
Published: (2012)

Auditing the defense against cross site scripting in web applications
by: SHAR, Lwin Khin, et al.
Published: (2010)

XSS for the masses: Integrating security in a web programming course using a security scanner
by: SHAR, Lwin Khin, et al.
Published: (2022)

Automated removal of cross site scripting vulnerabilities in web applications
by: Shar, Lwin Khin, et al.
Published: (2013)

Predicting common web application vulnerabilities from input validation and sanitization code patterns
by: Shar, Lwin Khin, et al.
Published: (2013)

Automated removal of cross site scripting vulnerabilities in web applications
by: SHAR, Lwin Khin, et al.
Published: (2011)

Predicting common web application vulnerabilities from input validation and sanitization code patterns
by: SHAR, Lwin Khin, et al.
Published: (2012)

Web application vulnerability prediction using hybrid program analysis and machine learning
by: SHAR, Lwin Khin, et al.
Published: (2014)

Semi-automated verification of defense against SQL injection in web applications
by: LIU, Kaiping, et al.
Published: (2012)

Predicting SQL injection and cross site scripting vulnerabilities through mining input sanitization patterns
by: SHAR, Lwin Khin, et al.
Published: (2013)

Mining input sanitization patterns for predicting SQL injection and cross site scripting vulnerabilities
by: SHAR, Lwin Khin, et al.
Published: (2012)

Semi-automated verification of defense against SQL injection in web applications
by: Liu, Kaiping, et al.
Published: (2013)

Mitigating SQL injection and cross site scripting vulnerabilities using program analysis and data mining techniques
by: Shar, Lwin Khin
Published: (2013)

Mining input sanitization patterns for predicting SQL injection and cross site scripting vulnerabilities
by: Shar, Lwin Khin, et al.
Published: (2013)

Defending against cross-site scripting attacks
by: Shar, Lwin Khin, et al.
Published: (2013)

An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
by: Thome, Julian, et al.
Published: (2021)

Application of elliptic curve cryptography in web security
by: Pham, Tan Phat.
Published: (2009)

Security auditing of web security vulnerabilities using program analysis : mobile application recommendation
by: Yong, Chen Feng
Published: (2019)

Defeating SQL injection
by: SHAR, Lwin Khin, et al.
Published: (2012)

Mining SQL injection and cross site scripting vulnerabilities using hybrid program analysis
by: SHAR, Lwin Khin, et al.
Published: (2013)

Mining patterns of unsatisfiable constraints to detect infeasible paths
by: DING, Sun, et al.
Published: (2015)

Defending against cross site scripting attacks
by: SHAR, Lwin Khin, et al.
Published: (2011)

Implementation of an intelligent web photo album
by: Wong, Kuan Yong.
Published: (2011)

Implementing social networking features in a web environment
by: Mohit Khandelwal.
Published: (2013)

A scalable approach for malware detection through bounded feature space behavior modeling
by: CHANDRAMOHAN, Mahinthan, et al.
Published: (2013)

Towards a hybrid framework for detecting input manipulation vulnerabilities
by: DING, Sun, et al.
Published: (2013)

JoanAudit: A tool for auditing common injection vulnerabilities
by: THOME, Julian, et al.
Published: (2017)

JSCSP: A novel policy-based XSS defense mechanism for browsers
by: XU, Guangquan, et al.
Published: (2022)

Scalable malware clustering through coarse-grained behavior modeling
by: CHANDRAMOHAN, Mahinthan, et al.
Published: (2012)

An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
by: THOME, Julian, et al.
Published: (2018)

Implementation of stochastic mobility services
by: Seet, Kenny Yong Song
Published: (2015)

A web demo for the Data Encryption Standard (DES)
by: Tan, Xuan Wei
Published: (2017)

A web demo for the Data Encryption Standard (DES)
by: Yuen Leong, Seah
Published: (2016)

Implementation attacks on post-quantum lattice-based cryptography
by: Ravi, Prasanna
Published: (2023)

Automated verification and testing of user-interactive undo features in database applications
by: Tan, Hee Beng Kuan, et al.
Published: (2013)

Efficient implementation of elliptic curve cryptosystems
by: Tan, Peng Chong.
Published: (2008)

Implementing security in internet of things (IoT)
by: Tee, Ting Yi
Published: (2016)

Implementation of web product search engine (Part II)
by: Wong, Kuan Lung.
Published: (2012)

Effectiveness of data auditing as a tool to reinforce good research data management (RDM) practice: a Singapore study
by: Lau, Hui Xing, et al.
Published: (2021)