完整後設資料紀錄
DC 欄位 | 值 | 語言 |
---|---|---|
dc.contributor.author | Wu, Yeng-Ting Jr | |
dc.contributor.author | Lin, Shiou-Jing Jr | |
dc.contributor.author | Liu, En-Si Jr | |
dc.contributor.author | Pao, Hsing-Kuo Jr | |
dc.contributor.author | Mao, Ching-Hao Jr | |
dc.contributor.author | Lee, Hahn-Ming Jr | |
dc.date.accessioned | 2011-03-25T00:45:11Z | |
dc.date.accessioned | 2020-05-18T03:22:09Z | - |
dc.date.available | 2011-03-25T00:45:11Z | |
dc.date.available | 2020-05-18T03:22:09Z | - |
dc.date.issued | 2011-03-25T00:45:11Z | |
dc.date.submitted | 2009-11-28 | |
dc.identifier.uri | http://dspace.lib.fcu.edu.tw/handle/2377/30170 | - |
dc.description.abstract | Cross-Site Scripting (XSS) is a well-known type of web vulnerabilities which allows attackers to in-ject the malicious scripts or codes to compromise the web application services. Based on the characteristics of client side script language, the attackers can launch XSS attack by a single HTTP request to a website easily. Therefore, detection of XSS is a critical issue for all website manag-ers. In this paper, based on a machine learning approach, we propose a new method to detect XSS attacks on a web server. We preprocess an HTTP request to a token se-quence, and utilize Hidden Markov Model to determine whether an XSS attack exists in the HTTP request. By filtering HTTP requests on the server side, our approach can label each HTTP request whether it is an XSS attack or not. Moreover, apart from other related methods, ours takes the proximity into consideration. The pro-posed system performs well with high accuracy rate on a real data set collected from a private telecom company. | |
dc.description.sponsorship | National Taipei University,Taipei | |
dc.format.extent | 7p. | |
dc.relation.ispartofseries | NCS 2009 | |
dc.subject | Cross site script | |
dc.subject | hidden Markov model | |
dc.subject | web security | |
dc.subject | token sequence | |
dc.subject.other | Workshop on Cryptography and Information Security | |
dc.title | Cross-Site Scripting Attack Detection Based on Hidden Markov Model | |
分類: | 2009年 NCS 全國計算機會議 |
文件中的檔案:
檔案 | 描述 | 大小 | 格式 | |
---|---|---|---|---|
CI0801.pdf | 379.03 kB | Adobe PDF | 檢視/開啟 |
在 DSpace 系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。