A Cross Site Script Vulnerability Detection Technology Based on Sequential Minimum Optimization Algorithm

doi:10.3969/j.issn.1671-1122.2017.10.009

Abstract

Abstract:

When the attacker uses the Web APP to inject malicious code into different end users, XSS attacks will occur. In the light of the phenomenon that Web application uses the user's input, but don’t verify or encode it, this paper put forward a kind of recursive feature elimination algorithm matching algorithm and sequential minimal optimization based on regular expression (SMO-RFE). The first is the data preprocessing, using regular expression matching algorithm, choose the characteristics of representative data set for the training set; then use the SMO-RFE feature selection algorithm to select the optimal features; once again feature sort and assemble the aggressive keywords; finally summarize the occurrence frequency of feature keyword and the weight ratio of feature value. The higher the occurrence frequency of attack keywords, the greater the likelihood of vulnerabilities. Through the experiment we can find out that after the data set is selected by SMO-RFE algorithm, the accuracy of SVM feature vector to be detected is higher, and shows that the algorithm can effectively detect XSS vulnerabilities.

Key words: cross site script attack, feature value, Web security vulnerabilities, SMO-RFE algorithm, information security

CLC Number:

TP309

Nana HUANG, Liang WAN, Xuankun DENG, Huifan YI. A Cross Site Script Vulnerability Detection Technology Based on Sequential Minimum Optimization Algorithm[J]. Netinfo Security, 2017, 17(10): 55-62.

Figures/Tables 14

References 21

[1]	VON A L, MAURER B, MCMILLEN C, et al.reCAPTCHA: Human-based Character Recognition via Web Security Measures[J]. Science, 2015, 321(5895): 1395-1398.
[2]	HUANG Yaowen, YU Fang, HANG C, et al. Securing Web Application Code by Static Analysis and Runtime Protection [EB/OL]. .
[3]	ANTUNES N,VIEIRA M. Comparing the Effectiveness of Penetration Testing and Static Code Analysis on the Detection of SQL Injection Vulnerabilities in Web Services[EB/OL].,2009-12-31.
[4]	KRUEGEL C, VIGNA G. Anomaly Detection of Web-based Attacks. [EB/OL].,2003-10-27.
[5]	BISHT P, VENKATAKRISHNAN V N. XSS-GUARD: Precise Dynamic Prevention of Cross-site Scripting Attacks [EB/OL]., 2017-7-1.
[6]	WEINBERGER J, SAXENA P, AKHAWE D, et al. A Systematic Analysis of XSS Sanitization in Web Application Frameworks[EB/OL].,2011-9-12.
[7]	SALAS M I P, MARTINS E. Security Testing Methodology for Vulnerabilities Detection of XSS in Web Services and WS-security[J]. Electronic Notes in Theoretical Computer Science, 2014, 302: 133-154.
[8]	FONSECA J, SEIXAS N, VIEIRA M, et al.Analysis of Field Data on Web Security Vulnerabilities[J]. IEEE Transactions on Dependable and Secure Computing, 2014, 11(2): 89-100.
[9]	CHANG C C, LIN C J.LIBSVM: a Library for Support Vector Machines[J]. ACM Transactions on Intelligent Systems and Technology (TIST), 2015, 2(3): 27.
[10]	KEERTHI S, SHEVADE S K, BHATTACHARYYA C, et al.Improvements to Platt's SMO Algorithm for SVM Classifier Design[J]. Neural Computation, 2012, 13(3): 537-549.
[11]	高川,严寒冰,贾子骁. 基于特征的网络漏洞态势感知方法研究[J]. 信息网络安全,2016(12):28-33.
[12]	BROWN M P S, GRUNDY W N, LIN D, et al. Knowledge-based Analysis of Microarray Gene Expression Data by Using Support Vector Machines[J]. Proceedings of the National Academy of Sciences of the Unitad States of America, 2015, 97(1): 262-267.
[13]	CAO L J, KEERTHI S S, ONG C J, et al.Parallel Sequential Minimal Optimization for the Training of Support Vector Machines[J]. IEEE Trans. Neural Networks, 2006, 17(4): 1039-1049.
[14]	DUAN K B, RAJAPAKSE J C, WANG H, et al.Multiple SVM-RFE for Gene Selection in Cancer Classification with Expression Data[J]. IEEE Transactions on Nanobioscience, 2015, 4(3): 228-234.
[15]	康年华,陈明志,冯映燕,等. 一种基于特征信息隐式获取的抗干扰浏览器指纹生成算法[J]. 信息网络安全,2017(4):71-77.
[16]	LESLIE C, ESKIN E, NOBLE W S.The Spectrum Kernel: a String Kernel for SVM Protein Classification[J]. Pacific symposium on biocomputing, 2002,7: 564-575.
[17]	CHERKASSKY V, MA Y.Practical Selection of SVM Parameters and Noise Estimation for SVM Regression[J]. Neural Networks: the Official Journal of the International Neural Network Society, 2014, 17(1): 113-126.
[18]	周德龙,高文,赵德斌.基于奇异值分解和判别式 KL 投影的人脸识别[J]. 软件学报, 2014, 14(4):783-789.
[19]	陈友,沈华伟,李洋,等.一种高效的面向轻量级入侵检测系统的特征选择算法[J].计算机学报,2016,30(8): 1398-1408.
[20]	KIM S, D'HARO L F, BANCHS R E, et al. The Fourth Dialog State Tracking Challenge[J].Ai Magazine, 2017,35(4):121-124.
[21]	王毅,唐勇,卢泽新,等. 恶意代码聚类中的特征选取研究[J]. 信息网络安全,2016(9):64-68.