ANCAMAN TERHADAP KEAMANAN INFORMASI OLEH SERANGAN CROSS-SITE SCRIPTING (XSS) DAN METODE PENCEGAHANNYA

Authors

  • Suroto Suroto Universitas Batam
  • Asman Asman Universitas Batam

DOI:

https://doi.org/10.37776/zk.v11i1.658

Abstract

Information stored on websites or the internet makes it easier for users to exchange information. Of course, only authorized users have access to this information. The amount of information that is spread and stored on the internet invites people who are not entitled to get that information. Various methods are used to obtain access rights and information. One of them is to carry out an attack called Cross Site Scripting Attack. Websites become the target of this type of attack. In this paper, an explanation of what is meant by a Cross Site Scripting attack, how this attack is carried out, and ways to prevent it. Knowledge of this type of attack is indispensable for developers of Web-based information systems. Because this attack works by exploiting programming errors or writing program code in an information system.

Author Biographies

Suroto Suroto, Universitas Batam

Teknik Sistem Informasi. Fakultas Teknik

Asman Asman, Universitas Batam

Teknik Sistem Informasi. Fakultas Teknik

References

Anonymous. Reviewing_Code_for_Cross-site_scripting. https://www.owasp.org/index.php/Reviewing_Code_for_Cross-site_scripting. Diakses November-2020

MacKenzie, Thomas. "ScriptAlert1.com – Concise Cross-Site Scripting Explanation in Multiple Languages". Diakses November-2020

Manico, Jim. Advanced XSS Defence. http://Secappdev.org. Diakses Desember 2020

Neha Gupta. 2015. “XSS Defense: An Approach for Detecting and Preventing Cross Site Scripting Attacks ‘. COMPUSOFT, An international journal of advanced computer technology, (Volume-IV, Issue-III) March-2015

Downloads

Published

2021-06-28

Issue

Section

Articles