DocumentCode :
1655445
Title :
A Detective Tool against SQL Injection Attacks Based on Static Analysis and Dynamic Monitor
Author :
Zijian Liu ; Lei Xu
Author_Institution :
Dept. of Comput. Sci. & Technol., Nanjing Univ., Nanjing, China
fYear :
2013
Firstpage :
195
Lastpage :
198
Abstract :
SQL injection exploits the weakness of server, causing damage to database and threating the benefit of both corporations and individuals. SQL injection attack is still one of the most serious security threats. This paper proposes a method with static analysis and dynamic monitor to detect SQL injection attacks. Comparing to the current tools, this tool can compute danger degree of user input and classify user behavior with lower time and space complexity.
Keywords :
SQL; computational complexity; program diagnostics; security of data; SQL injection attack detective tool; dynamic monitoring; security threats; space complexity; static analysis; time complexity; user behavior classification; user input danger degree; Conferences; Databases; Internet; Monitoring; Servers; Syntactics; SQL injection; danger degree; dynamic monitor; static analysis;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Web Information System and Application Conference (WISA), 2013 10th
Conference_Location :
Yangzhou
Print_ISBN :
978-1-4799-3218-4
Type :
conf
DOI :
10.1109/WISA.2013.45
Filename :
6778636
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1655445
بازگشت