EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Resolving Cross-Site Scripting Attacks through Fusion Verification and Machine Learning

Jiazhong Lu, Zhitan Wei, Zhi Qin, Yan Chang and Shibin Zhang ()
Additional contact information
Jiazhong Lu: School of Cybersecurity, Chengdu University of Information Technology, Chengdu 610225, China
Zhitan Wei: School of Cybersecurity, Chengdu University of Information Technology, Chengdu 610225, China
Zhi Qin: School of Cybersecurity, Chengdu University of Information Technology, Chengdu 610225, China
Yan Chang: School of Cybersecurity, Chengdu University of Information Technology, Chengdu 610225, China
Shibin Zhang: School of Cybersecurity, Chengdu University of Information Technology, Chengdu 610225, China

Mathematics, 2022, vol. 10, issue 20, 1-14

Abstract: The frequent variations of XSS (cross-site scripting) payloads make static and dynamic analysis difficult to detect effectively. In this paper, we proposed a fusion verification method that combines traffic detection with XSS payload detection, using machine learning to detect XSS attacks. In addition, we also proposed seven new payload features to improve detection efficiency. In order to verify the effectiveness of our method, we simulated and tested 20 public CVE (Common Vulnerabilities and Exposures) XSS attacks. The experimental results show that our proposed method has better accuracy than the single traffic detection model. Among them, the recall rate increased by an average of 48%, the F1 score increased by an average of 27.94%, the accuracy rate increased by 9.29%, and the accuracy rate increased by 3.81%. Moreover, the seven new features proposed in this paper account for 34.12% of the total contribution rate of the classifier.

Keywords: XSS attack; traffic detection; payloads; fusion verification (search for similar items in EconPapers)
JEL-codes: C (search for similar items in EconPapers)
Date: 2022
References: View complete reference list from CitEc
Citations:

Downloads: (external link)
https://www.mdpi.com/2227-7390/10/20/3787/pdf (application/pdf)
https://www.mdpi.com/2227-7390/10/20/3787/ (text/html)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:gam:jmathe:v:10:y:2022:i:20:p:3787-:d:941924

Access Statistics for this article

Mathematics is currently edited by Ms. Emma He

More articles in Mathematics from MDPI
Bibliographic data for series maintained by MDPI Indexing Manager ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-19
Handle: RePEc:gam:jmathe:v:10:y:2022:i:20:p:3787-:d:941924