Staffordshire University logo
STORE - Staffordshire Online Repository

Important Factors to Remember when Constructing a Cross-site Scripting Prevention Mechanism

Hassan, Md. Maruf, Ahmad, Badlishah R, Esha, Ashrafia, Risha, Rafika and HASAN, Mohammad (2022) Important Factors to Remember when Constructing a Cross-site Scripting Prevention Mechanism. Bulletin of Electrical Engineering and Informatics, 11 (2). ISSN 2302-9285

3557-8753-1-PB(1).pdf - Publisher's typeset copy
Available under License Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0).

Download (529kB) | Preview

Abstract or description

Web application has become an essential part of daily activities to provide easy accessibility that ensures better performance. It is a platform where sensitive information such as username, password, credit card details, operating system and software version etc. is stored that attracts intruders to generate most of their attacks. Intruders can steal valuable data by compromising web application security flaws; Cross Site Scripting (XSS) vulnerability is one of these. Several studies have been conducted in order to prevent the XSS vulnerability. In this research, we searched Scopus Indexed articles published in the last 11 years (between 2008 and 2020) using two keywords (“XSS Attack Prevention” and “XSS Prevention”). The purpose of this study was to conduct a literature review on XSS prevention techniques e.g. strengths and weaknesses, including structural issues and real-time deployment location in order to extract valuable information. This review identified 14 articles among the 25 selected articles that provided various suitable prevention techniques for XSS attacks. Seven articles are based on tools that have been implemented and take into account design, coding, testing, and integrating validation processes, six articles are about server site solutions, and one is about automatic mitigation solutions. As a result, this research will be invaluable in guiding the advancement of XSS prevention techniques.

Item Type: Article
Faculty: School of Digital, Technologies and Arts > Computer Science, AI and Robotics
Depositing User: Mohammad HASAN
Date Deposited: 19 Nov 2021 14:41
Last Modified: 11 Apr 2023 14:55
Related URLs:

Actions (login required)

View Item View Item

DisabledGo Staffordshire University is a recognised   Investor in People. Sustain Staffs
Legal | Freedom of Information | Site Map | Job Vacancies
Staffordshire University, College Road, Stoke-on-Trent, Staffordshire ST4 2DE t: +44 (0)1782 294000