Dynamic security algorithms for The detection and prevention Of attacks in web services

Abstract

Nowadays everybody needs to handle sensitive data like online newlinebanking account details and other information related to financial transactions newlineon the Internetb In this scenariob many Web attacks such as injection attacks newlineare targeted on these sensitive datab Such attacks are carried out by running newlinescripts on users computers that utilize a vulnerable coded client server pages newlineMoreover these attacks run malicious codes to steal personal information newlinefrom the server Further it can easily be generated by the attacker but very newlinedifficult to prevent by the current cross site scripting filters due to their newlinedetection accuracy Therefore cross site scripting attack is a challenging issue newlinefor the Internet users Hence it is necessary to detect and prevent the injection newlineattacks through efficient schemes However most of the existing schemes newlinelack this capability in terms of accuracy and need further improvement newlineIn this thesis, the new self aware analyzing and validating the newlinemessage algorithm is proposed for detecting and filtering various types of newlineWeb Service attacks This receives request and generates the response from newlinethe dummy server page to analyze the nature of attack The policy is created newlineto analyze the response and forward the legitimate request to original Web newlineService page The proposed injection filters have been tested with all possible newlineattacks for verifying the robustness of filtering policies newline newline