首页|Detection and defending the XSS attack using novel hybrid stacking ensemble learning-based DNN approach

Detection and defending the XSS attack using novel hybrid stacking ensemble learning-based DNN approach

扫码查看
原文链接
  • 万方数据
  • 维普
Existing web-based security applications have failed in many situations due to the great intelligence of attackers.Among web applications,Cross-Site Scripting(XSS)is one of the dangerous assaults experienced while modifying an organization's or user's information.To avoid these security challenges,this article proposes a novel,all-encompassing combination of machine learning(NB,SVM,k-NN)and deep learning(RNN,CNN,LSTM)frameworks for detecting and defending against XSS attacks with high accuracy and efficiency.Based on the representation,a novel idea for merging stacking ensemble with web applications,termed"hybrid stacking",is proposed.In order to implement the aforementioned methods,four distinct datasets,each of which contains both safe and unsafe content,are considered.The hybrid detection method can adaptively identify the attacks from the URL,and the defense mechanism inherits the advantages of URL encoding with dictionary-based mapping to improve prediction accuracy,accelerate the training process,and effectively remove the unsafe JScript/JavaScript keywords from the URL.The simulation results show that the proposed hybrid model is more efficient than the existing detection methods.It produces more than 99.5%accurate XSS attack classification results(accuracy,precision,recall,fl_score,and Receiver Operating Characteristic(ROC))and is highly resistant to XSS attacks.In order to ensure the security of the server's information,the proposed hybrid approach is demonstrated in a real-time environment.

Machine learningDeep neural networksClassificationStacking ensembleXSS attackURL encodingJScript/JavaScriptWeb security

Muralitharan Krishnan、Yongdo Lim、Seethalakshmi Perumal、Gayathri Palanisamy

展开 >

IMS,Sungkyunkwan University,Suwon,16419,South Korea

Department of Mathematics,Sungkyunkwan University,Suwon,16419,South Korea

Department of Information Technology,Madras Institute of Technology,Chennai,India

Department of Mathematics PSG College of Arts and Science Tamilnadu,India

展开 >

National Research Foundation of Korea(NRF)grant funded by the Korea government(MEST)National Research Foundation of Korea(NRF)grant funded by the Korea government(MEST)

2015R1A3A20311592016R1A5A1008055

2024

10.1016/j.dcan.2022.09.024

数字通信与网络(英文)

数字通信与网络(英文)

ISSN:
年,卷(期):2024.10(3)