Title :
Research on SQL injection defense mechanisms for Portal Sites of University
Author_Institution :
Informatization Office, East China Univ. of Political Sci. & Law, Shanghai, China
Abstract :
Along with the development and improvement of informatization construction, campus network security problems are increasingly serious. The attack to portal sites, especially the explosion of SQL injection accidents has become one of the most serious problems of it. This paper analyzes the principle and characteristics of SQL injection attacks on portal sites of university, presents methods available to prevent websites from these kinds of attacks, including improvement of the management system, secure coding within the web application, proper database configuration, deployment of IIS, application of network firewalls and IDS/IPS, installation of webpage temper proofing system and other security techniques.
Keywords :
SQL; Web sites; authorisation; computer network security; educational institutions; portals; IDS/IPS; SQL; Web page temper proofing system; Web sites; campus network security; informatization construction; injection defense mechanisms; management system; network firewalls; portal sites; secure coding; university; Explosions; Fires; Helium; Internet; Intrusion detection; Portals; Portal sites; SQL Injection; Security;
Conference_Titel :
Computer Science and Service System (CSSS), 2011 International Conference on
Conference_Location :
Nanjing
Print_ISBN :
978-1-4244-9762-1
DOI :
10.1109/CSSS.2011.5974662
