Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method for automatically generating cross site script (XSS) vulnerability detection parameter by using genetic algorithm

A technology for cross-site scripting and vulnerability detection, which is applied in the field of automatic generation of XSS cross-site scripting vulnerability detection parameters, and can solve the problems that cannot meet the needs of web application vulnerability detection

Inactive Publication Date: 2010-11-24
NANKAI UNIV +1
View PDF0 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, as web applications become more and more complex and large, the previous method of manually specifying vulnerability test data has been unable to meet the needs of web application vulnerability detection in terms of coverage and efficiency.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for automatically generating cross site script (XSS) vulnerability detection parameter by using genetic algorithm
  • Method for automatically generating cross site script (XSS) vulnerability detection parameter by using genetic algorithm
  • Method for automatically generating cross site script (XSS) vulnerability detection parameter by using genetic algorithm

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] figure 2 The algorithm flow of the present invention is given, and the following embodiments are further provided in conjunction with the present invention:

[0035] According to the method of the present invention, the algorithm for realizing automatic generation of XSS cross-site scripting vulnerability detection parameters through genetic algorithm also needs to include a simulated attack system, an attack parameter database, and a simulated attack target system, and the number of iterations is manually set to 30 according to the final needs. That is, the algebra of the cycle is 30 generations. One iteration of its iterative algorithm is shown below.

[0036] 1. Implementation of the method of the present invention The first part of an iterative process of an iterative algorithm is to generate a detection parameter set through a genetic algorithm.

[0037] First, perform binary coding on the parent gene, and perform binary coding on the parent gene data shown in Table 2...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for automatically generating a cross site script (XSS) vulnerability detection parameter by using a genetic algorithm. The method realizes the algorithm according to the parameter rules of XSS vulnerabilities and the principle of the genetic algorithm by designing a set of detection parameter set, coding / decoding strategy and attack parameter database, using crossing, variation and selection operations of the genetic algorithm and designing a simulated attack operation. New parents and offspring are continuously generated through the feedback result of the simulated attack operation and the gene coding strategy, and the algorithm is circularly executed till reaching an expected algebra. The method for automatically generating the XSS vulnerability detection parameter by using the genetic algorithm is reliable and complete, has wide coverage and high execution speed, and can be applied to the field of automatically generating the XSS vulnerability detection parameter.

Description

【Technical Field】 [0001] The invention belongs to the technical field of vulnerability detection and test data automatic generation, and specifically relates to a method for automatically generating XSS cross-site script vulnerability detection parameters by applying genetic algorithms. 【Background technique】 [0002] With the development of web technology, various types of web applications emerge in endlessly, and the resulting web application vulnerabilities are also increasing. One of the most harmful vulnerabilities is the cross-site scripting vulnerability. CrossSite Script (XSS) refers to hackers implanting malicious code in a Web page. When a user browses the page, the HTML code embedded in the attacker will be executed, thereby achieving the purpose of maliciously stealing user information. . [0003] At present, there are two directions of detection technology for Web vulnerabilities, one is intrusion detection mechanism, and the other is detection of the system itself t...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/00G06F17/30G06N3/12G06F21/56
Inventor 许静练坤梅田伟刘磊张莹
Owner NANKAI UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com