RAJIVE: restricting the abuse of JavaScript injection vulnerabilities on cloud data centre by sensing the violation in expected workflow of web applications. (2018)
- Record Type:
- Journal Article
- Title:
- RAJIVE: restricting the abuse of JavaScript injection vulnerabilities on cloud data centre by sensing the violation in expected workflow of web applications. (2018)
- Main Title:
- RAJIVE: restricting the abuse of JavaScript injection vulnerabilities on cloud data centre by sensing the violation in expected workflow of web applications
- Authors:
- Gupta, Shashank
Gupta, B.B. - Abstract:
- This article introduces a novel defensive framework that detects and obstructs the exploitation of malicious JavaScript (JS) injection by spotting the violation in the expected workflow of web applications deployed on the cloud data centres. The framework initially generates some categories of axioms by examining the strings of HTTP request and response. Likewise, it detects the deviation in the intended workflow of web application by examining the violation in such generated axioms. The prototype of our work was developed in Java development framework and installed on the virtual machines of cloud data centres located at the core of network. Susceptible web applications were utilised for evaluating the workflow violation detection capability in order to obstruct the execution of XSS worms on the cloud data centres. Evaluation result revealed that framework detects the injection of XSS worms with high precision rate and lesser rate of false positives and false negatives.
- Is Part Of:
- International journal of innovative computing and applications. Volume 9:Number 1(2018)
- Journal:
- International journal of innovative computing and applications
- Issue:
- Volume 9:Number 1(2018)
- Issue Display:
- Volume 9, Issue 1 (2018)
- Year:
- 2018
- Volume:
- 9
- Issue:
- 1
- Issue Sort Value:
- 2018-0009-0001-0000
- Page Start:
- 13
- Page End:
- 36
- Publication Date:
- 2018
- Subjects:
- cloud security -- XSS attack -- JavaScript worms -- workflow violation attacks -- WV -- AJAX -- JavaScript
Evolutionary computation -- Periodicals
Neural networks (Computer science) -- Periodicals
Genetic programming (Computer science) -- Periodicals
Biologically-inspired computing -- Periodicals
Swarm intelligence -- Periodicals
Quantum computers -- Periodicals
006.3 - Journal URLs:
- http://www.inderscience.com/browse/index.php?journalCODE=ijica ↗
http://www.inderscience.com/ ↗ - Languages:
- English
- ISSNs:
- 1751-648X
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 9262.xml