期刊名称:International Journal of Security and Its Applications
印刷版ISSN:1738-9976
出版年度:2016
卷号:10
期号:5
页码:95-106
DOI:10.14257/ijsia.2016.10.5.09
出版社:SERSC
摘要:In recent years, the destruction of cross-site scripting (XSS) attacks is gradually increasing, but the existing XSS defense methods have some problems, such as, complex disposition, low performance, high non-response rates or high rate of false positives. Therefore, it is imminent to establish an efficient XSS defense mechanism. This paper presents a cross-site scripting attacking detection method, which is based on improved algorithm skip list. It can fulfill the rapid detection of cross-site scripting attacks by using some steps, for example, creating a skip list signature, detecting suspicious strings, marking attack vectors and so on. Experiment shows that compared with the traditional defense method of XSS attack, the new defense method can reduce the false alarm rate of detection, and improve the time performance effectively.
