Intrusion Protection against SQL Injection and Cross Site Scripting Attacks Using a Reverse Proxy

Capítulo de livro Revisado por pares

Intrusion Protection against SQL Injection and Cross Site Scripting Attacks Using a Reverse Proxy

2012; Springer Science+Business Media; Linguagem: Inglês

10.1007/978-3-642-34135-9_26

ISSN

1865-0937

Autores

S. Fouzul Hidhaya, Angelina Geetha,

Tópico(s)

Advanced Malware Detection Techniques

Resumo

Internet and web applications have grown exponentially and have become an essential part of day-to-day living. But level of security that this Internet provides has not grown as fast as the Internet applications. The drawbacks, such as the intrusions, that are attached with the Internet applications sustain the growth of these applications. Two such vulnerabilities that dominate are the SQL Injection attacks (SQLIA) and the Cross Site Scripting Attack (XSS), contributing to 30% of the total Internet attacks. Much research is being carried out in this area. In this paper we propose a system that uses MD5 algorithm and grammar expression rules, manipulated in a reverse proxy, to mitigate SQL injection and Cross Site Scripting Attacks. This system provides a server side solution for XSS attack. The system has been tested on standard test bed applications and our work has shown significant improvement detecting and curbing the SQLIA and primary XSS attacks.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Intrusion Protection against SQL Injection and Cross Site Scripting Attacks Using a Reverse Proxy