4. Web Security Statistics1.
1
WhiteHat Security “Website Security Statistics Report”, May 2013
WhiteHat Security “Website Security Statistics Report”, May 2015
86% of all tested websites had at least one serious
vulnerability.
33% of all tested websites had at least one serious
vulnerability exposed every single day of 2012.
5 to 32 vulnerabilities per site in average.
5. Types of Security Vulnerabilities
1.
2
• Injection Flaws (SQL injection…etc.)
• Broken Authentication / Session Management
• Cross-site Scripting (XSS)
• Insecure Direct Object References
• Security Misconfiguration
• Sensitive Data Exposure
• Missing Function Level Access Control
• Cross-site Request Forgery (CSRF)
• Using Components with Known Vulnerabilities
• Invalidated Redirects and Forwards
OWASP Top 10 (2013)
6. Types of Security Vulnerabilities
1.
2
• Injection Flaws (SQL injection…etc.)
• Broken Authentication / Session Management
• Cross-site Scripting (XSS)
• Insecure Direct Object References
• Security Misconfiguration
• Sensitive Data Exposure
• Missing Function Level Access Control
• Cross-site Request Forgery (CSRF)
• Using Components with Known Vulnerabilities
• Invalidated Redirects and Forwards
OWASP Top 10 (2013)
8. Existing XSS Prevention Methods
1.
4 For Example:
Use htmlspecialchars when needed
print(htmlspecialchars("<script>document.write('a
bc');</script>"));
↓
<script>document.write('abc');</script>
9. How Reflective XSS Attacks Work
1.
5
① 攻撃スクリプトを
含むURLを作成
攻撃者
被害者
② URLをリクエスト
③ 攻撃スクリプトを含むページ
④ 攻撃スクリプトが実行
ウェブサイト
10. Threats of XSS Attacks
1.
6 • XSS accounts for 43% of all web security vulnerabilities
Gupta, “XSS attacks and defense mechanisms: classification and state-of-the-art” (2015)
11. Threats of XSS Attacks (cont.)
1.
6 Threats include:
• Session hijacking
• Misinformation
• Change of user settings
• Cookie theft
• Phishing
• … and much more
V. Nithya et al. ,“A Survey on Detection and Prevention of Cross-Site Scripting Attack” (2015)