Department of Computer Science and Information Systems

Permanent URI for this collectionhttp://localhost:4000/handle/123456789/1928

Browse

Filters

2015 - 20184

Settings

Author: search.filters.author.Gupta, ShashankSubject: search.filters.subject.Cloud Computing

Search Results

Now showing 1 - 4 of 4
  • No Thumbnail Available
    Item
    Efficient Service Utilization in Cloud Computing Exploitation Victimization as Revised Rough Set Optimization Service Parameters
    (Elsevier, 2015) Gupta, Shashank
    Cloud computing is an effort in delivering resources as a service. In cloud computing setting the role of service supplier is split into two parts as Cloud Broker and repair suppliers. The Cloud Brokermanages cloud platforms and lease resources in keeping with a usage-based evaluation model. The repair suppliers rent resources from one or several infrastructure suppliers to serve the top users. The plan of action of choosing a Cloud Service supplier is evaluated upon the premise of Which-Cloud Provider-Provides-What. Selecting qualification applicableService supplier is more durable as results of all CSPs cannot be counted for all non-stop Service. The aim of this analysis work is to traumatize the programming of the requests on the premise of twelve parameters that got higher best-known to comprehend the simplest best ways that of cloud service supplier allotment to the users. Apart from the implementation and compression purpose taken identical four parameters that unit of measure gift in ROSP recursive program. It uses rough math's to urge the mathematical model inside that the algorithmic program Rough set improvement Service Parameters is created on the premise of the economical resource Utilization in Cloud Computing practice Revised ROSP programming Technique. Then the algorithm is enforced within the cloud machine within that cloudlets, datacenters, and cloud brokers unit of measure wont to perform the algorithms. Some integral packages of Cloud machine unit of measure won’t to simulate the strategy. The strategy is completed combined at a lower place internet Beans and Sql. The results once the implementation of the ERROSP algorithm got unit of measure on high of theROSP algorithm in time taken and mainframe utilization.
  • No Thumbnail Available
    Item
    CSSXC: Context-sensitive Sanitization Framework for Web Applications against XSS Vulnerabilities in Cloud Environments
    (Elsevier, 2016) Gupta, Shashank
    This paper presents a context-sensitive sanitization based XSS defensive framework for the cloud environment. It discovers all the hidden injection points in HTML5-based web applications deployed on the platforms of cloud and sanitizes the XSS attack payloads injected in such points in a context sensitive manner. The identification of such injection points permits our technique to retrieve each possible web page of application, allowing a wider exploration and accelerating the process of applying the sanitizers on the untrusted variables of web application. The XSS attack mitigation capability of our framework was evaluated on web applications deployed for the cloud users in the cloud environment. The experimental results reveal that this technique detects the XSS attack payloads with minimum rate of false negatives and less runtime overhead.
  • No Thumbnail Available
    Item
    Enhanced XSS Defensive Framework for Web Applications Deployed in the Virtual Machines of Cloud Computing Environment
    (Elsevier, 2016) Gupta, Shashank
    To thwart the virtual machines from being a victim of XSS attacks on the cloud computing environment, this paper presents an enhanced XSS defensive methodology for the cloud platforms. This framework initially scans the HTTP requests for the embedded URI links that points towards the links of external JS files and which may contain malicious XSS payload. Our design also explores the HTTP response for extracting the script content and compares this content with the script content retrieved from the URI links. Any resemblance observed in both these extracted set of scripts would be considered as malicious XSS worm. The testing and evaluation of our framework was done on tested bed of real world web applications by injecting the XSS attack payloads on their vulnerable injection points. Evaluation results revealed that our framework detects the XSS attack vectors with fewer rates of false negatives and false positives
  • No Thumbnail Available
    Item
    Efficient yet Robust Elimination of XSS Attack Vectors from HTML5 Web Applications Hosted on OSN-Based Cloud Platforms
    (Elsevier, 2018) Gupta, Shashank
    The authors suggested a cloud-hosted XSS defensive model that defends the cloud-hosted web applications against the injection of HTML5 attack vectors. The model is categorized into 2 phrases: namely HTML5 Feature Injection and HTML5 Feature Comparison. The earlier one basically involves calculating and storing the features of JavaScript code in the feature repository. The other one compares the features extracted in the offline and online mode. Any oddity results in consequent sanitization of the HTMl5 script code. We have developed our prototype on the environmental set-up of ICAN Cloud simulator and its settings were integrated by creating the infrastructure set-up of various virtual machines on this simulator. The HTML5 XSS attack vector detection proficiency of our scheme was tested on numerous cloud-hosted web applications installed on different virtual machines facilitating with the malicious intention of injection of attack vectors on regular intervals. Experimental results disclosed the facts that our proposed scheme is proficient enough to detect and eliminate the HTML5 attack vectors from the tested web applications with tolerable rate of False Negatives (FNs), False Positives (FPs) and lesser overhead.