DocumentCode :
3237256
Title :
A database security testing scheme of web application
Author :
Haixia, Yang ; Zhihong, Nan
Author_Institution :
Bus. Coll., Shanxi Univ., Taiyuan, China
fYear :
2009
fDate :
25-28 July 2009
Firstpage :
953
Lastpage :
955
Abstract :
SQL injection attacks have posed a serious security threat to Web databases. To address this problem, this paper presents a scheme of database security testing. It studies how to detect potential input points of SQL injection, automatically generate test cases and find vulnerability of databases by running these test cases to make a simulation attack to an application. The database security testing can stop up SQL attack channels in the beginning.
Keywords :
Internet; SQL; program testing; security of data; SQL injection attacks; Web application; Web databases; database security testing scheme; security threat; Application software; Automatic testing; Computer science; Computer science education; Computer security; Data security; Databases; Information security; Internet; Libraries; Database Security Testing; SQL Injection; data input points; simulation attack;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computer Science & Education, 2009. ICCSE '09. 4th International Conference on
Conference_Location :
Nanning
Print_ISBN :
978-1-4244-3520-3
Electronic_ISBN :
978-1-4244-3521-0
Type :
conf
DOI :
10.1109/ICCSE.2009.5228560
Filename :
5228560
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3237256
بازگشت