Kailas R. Patil

Work place: Department of Computer Engineering, VIIT, SPPU University, Pune, India

E-mail: kailas.patil@viit.ac.in

Website:

Research Interests: Hardware Security, Information Security, Network Security, Data Structures and Algorithms

Biography

Dr. K. R. Patil: KAILAS PATIL eceived the PhD in Computer Sci- ence, National University of Singapore (NUS), Singapore, in 2014. He is currently a Professor with the Department of Computer Engineering at Vishwakarma Institute of Information Technology (VIIT), University of Pune, India. He is a Mozilla Rep in India. His research interests include information security, cloud security, and web security. He also served as a reviewer in many SCI-index journals, other journals, other conferences.

Author Articles
Automated Client-side Sanitizer for Code Injection Attacks

By Dnyaneshwar K. Patil Kailas R. Patil

DOI: https://doi.org/10.5815/ijitcs.2016.04.10, Pub. Date: 8 Apr. 2016

Web applications are useful for various online services. These web applications are becoming ubiquitous in our daily lives. They are used for multiple purposes such as e-commerce, financial services, emails, healthcare services and many other captious services. But the presence of vulnerabilities in the web application may become a serious cause for the security of the web application. A web application may contain different types of vulnerabilities. Cross-site scripting is one of the type of code injection attacks. According to OWASP TOP 10 vulnerability report, Cross-site Scripting (XSS) is among top 5 vulnerabilities. So this research work aims to implement an effective solution for the prevention of cross- site scripting vulnerabilities. In this paper, we implemented a novel client-side XSS sanitizer that prevents web applications from XSS attacks. Our sanitizer is able to detect cross-site scripting vulnerabilities at the client-side. It strengthens web browser, because modern web browser do not provide any specific notification, alert or indication of security holes or vulnerabilities and their presence in the web application.

[...] Read more.
Other Articles