Litcius/Paper detail

A hybrid of CNN and LSTM methods for securing web application against cross-site scripting attack

Raed Waheed Kadhim, Methaq Talib Gaata

2021Indonesian Journal of Electrical Engineering and Computer Science23 citationsDOIOpen Access PDF

Abstract

<span>Cross-site scripting (XSS) is today one of the biggest threatthat could targeting the Web application. Based on study published by the open web applications security project (OWASP), XSS vulnerability has been present among the TOP 10 Web application vulnerabilities.Still,an important security-related issue remains how to effectively protect web applications from XSS attacks.In first part of this paper, a method for detecting XSS attack was proposed by combining </span><span lang="EN-GB">convolutional</span><span> neural network (CNN) with long short term memories<strong> (</strong>LSTM), Initially, pre-processing was applied to XSS Data Set by decoding, generalization and tokanization, and then word2vec was applied to convert words into word vectors in XSS payloads. And then we use the combination CNN with LSTM to train and test word vectors to produce a model that can be used in a web application. Based on the obtaned results, it is observed that the proposed model achevied an excellent result with accuracy of 99.4%.</span>

Topics & Concepts

Cross-site scriptingComputer scienceScripting languageWeb applicationWeb application securityComputer securityConvolutional neural networkWorld Wide WebArtificial intelligenceWeb developmentProgramming languageWeb serviceWeb Application Security VulnerabilitiesNetwork Security and Intrusion DetectionAdvanced Malware Detection Techniques
A hybrid of CNN and LSTM methods for securing web application against cross-site scripting attack | Litcius