DocumentCode :
2215163
Title :
An adaptive method preventing database from SQL injection attacks
Author :
Shan, Li ; Xiaorui, Dong ; Hong, Rao
Author_Institution :
Center of Comput., Nanchang Univ., Nanchang, China
Volume :
1
fYear :
2010
fDate :
20-22 Aug. 2010
Abstract :
SQL injection is an attack technique used to exploit code by altering back-end SQL statements through manipulating input. This paper proposes a novel methodology of preventing SQL injection attacks by building a protective adaptive shell. The protective shell is located between the application and the back-end database and has three layers to block illegal SQL statements. It could be adaptive after training and reduce the possibility of data leakage to protect the database system.
Keywords :
SQL; database management systems; invasive software; SQL injection attack; adaptive method; backend SQL statement; backend database; data leakage; database system protection; protective adaptive shell; Databases; SQL injection; Three-tier mode; adaptive; database; protective shell;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Advanced Computer Theory and Engineering (ICACTE), 2010 3rd International Conference on
Conference_Location :
Chengdu
ISSN :
2154-7491
Print_ISBN :
978-1-4244-6539-2
Type :
conf
DOI :
10.1109/ICACTE.2010.5579002
Filename :
5579002
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2215163
بازگشت