@article{MAKHILLIJSC20127421085,
    title = {Preventing Client-Side Attack in Web Applications Through Web Services},
    journal = {International Journal of Soft Computing},
    volume = {7},
    number = {4},
    pages = {181-190},
    year = {2012},
    issn = {1816-9503},
    doi = {ijscomp.2012.181.190},
    url = {https://makhillpublications.co/view-article.php?issn=1816-9503&doi=ijscomp.2012.181.190},
    author = {V.,P. and},
    keywords = {Client-side attacks,Cross-Site Scripting (XSS),web services,servlet filter,India},
    abstract = {Cross-Site Scripting (XSS) is a prominent threat in web based 
  application caused through a malicious input to the application. It is a type 
  of Client-side attack which targets on the vulnerable areas in the web applications 
  by interacting with malicious server or data. In Cross-Site Scripting (XSS) 
  an attacker can inject malicious scripting code into the input or the header 
  of the application. The injected malicious scripting code will be executed and 
  reveals sensitive information to the attacker. In order to prevent cross-site 
  scripting, we have proposed a web service based detection and prevention mechanism 
  by verifying the user request and response. To implement our mechanism every 
  request and response will be fetched through servlet filter and it will be analysed 
  to check the presence of any malicious injected script. The identification of 
  the malicious script is by constructing a graph with the input of user request 
  and server response of the application. If any malicious script is found that 
  will be replaced with equivalent entity character reference to prevent XSS attack. 
  As a result, the user has an additional protection layer when performing online 
  commercial activities without solely depending on the security of the web application.}
    }