Preventing Cross-Site Scripting Attacks by Combining Classifiers

Mereani, F. & Howe, J. M. (2018). Preventing Cross-Site Scripting Attacks by Combining Classifiers. Paper presented at the International Joint Conference on Computational Intelligence, 18-20 Sep 2018, Seville, Spain.

[img]
Preview
Text - Accepted Version
Download (180kB) | Preview
Official URL: http://www.ijcci.org/

Abstract

Cross-Site Scripting (XSS) is one of the most popular attacks targeting web applications. Using XSS attackers can obtain sensitive information or obtain unauthorized privileges. This motivates building a system that can recognise a malicious script when the attacker attempts to store it on a server, preventing the XSS attack. This work uses machine learning to power such a system. The system is based on a combination of classifiers, using cascading to build a two phase classifier and the stacking ensemble technique to improve accuracy. The system is evaluated and shown to achieve high accuracy and high detection rate on a large real world dataset.

Publication Type: Conference or Workshop Item (Paper)
Publisher Keywords: Cascading Classifiers; Stacking Ensemble; Cross-Site Scripting
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Departments: School of Mathematics, Computer Science & Engineering > Computer Science
URI: http://openaccess.city.ac.uk/id/eprint/20137

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics