Similarity-AF-Mitigation Web Server for Cross-Site Scripting Attack Using Penetration Testing Method

Fadlil, Abdul and Riadi, Imam and Fachri, Fahmi (2022) Similarity-AF-Mitigation Web Server for Cross-Site Scripting Attack Using Penetration Testing Method. International Journal of Safety and Security Engineering, 12 (2).

[thumbnail of Similarity-AF-Mitigation Web Server for Cross-Site Scripting Attack Using Penetration Testing Method.pdf] Text
Similarity-AF-Mitigation Web Server for Cross-Site Scripting Attack Using Penetration Testing Method.pdf

Download (3MB)

Abstract

The increasing number of user-oriented applications uploading all their information to the web is causing cyber-attacks and data theft. One of the most prevalent vulnerabilities is Cross-Site Scripting (XSS). Intruders take advantage of these attacks to access sensitive user data. This study aims to mitigate XSS attacks by using the penetration testing method as an official effort to improve web server security. The subject of this research uses the login form from the academic information system web server. This study offers a mitigation system prototype against XSS using the penetration test method and the secure code algorithm. This method plays a role in obtaining vulnerability data and security code as a prevention system. The results of this study indicate three categories of web server weaknesses: five at the high level, 164 at the medium level, and 52 vulnerabilities at the low level. Mitigation measures use secure code by denying repeated failed login attempts.
These results provide a strategy for web managers to improve security and consider the risk of cyberattacks.

Item Type: Artikel Umum
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
T Technology > T Technology (General)
T Technology > TA Engineering (General). Civil engineering (General)
Divisi / Prodi: Master (Magister) > Master of Technology Informatica (Magister Teknologi Informatika)
Depositing User: Drs. Abdul Fadlil, M.T., Ph.D.
Date Deposited: 22 Aug 2022 03:38
Last Modified: 22 Aug 2022 03:41
URI: http://eprints.uad.ac.id/id/eprint/36403

Actions (login required)

View Item View Item