DSpace
 


My University > Journal of Computers > Journal of Computers第18卷 >





Title: Digital Evidence Seizure in Network Intrusions against Cyber-crime on Internet Systems
Other Titles: Department of Information Management
Information Office at Changhua Police Bureau
Authors: Wang, Shiuh-Jeng; Chang, Yao-Han; Ke, Hung-Jui; Juang, Wen-Shenq
Keywords: Forensics and Evidence
internet attacks
website systems
XSS(Cross Site Scripting)
Issue Date: 12-11-2008
Abstract: With the global trend of internet, many companies set up websites for international recognition and marketing. However, the hackers and potential attackers lurk on internet. More and more web attack methods have invented and threat these vulnerable websites. Recently, the “Code Injection” has become the major problem, such as SQL Injection, ASP Injection, PHP Injection and XSS (Cross Site Scripting) attack. The victims include the biggest Blog “Wrench” in Taiwan and the largest friend’s community website “MySpace” in the world. In this paper, we will analyze the XSS attack and propose a scheme to collect evidence on network systems after XSS attack. We also propose our management strategy against XSS attack.
Appears in Collections:Journal of Computers第18卷

Files in This Item:

File Description SizeFormat
JOC_18_4_7.pdf581.8 kBAdobe PDFView/Open

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.

 

Valid XHTML 1.0!