• DocumentCode
    3660907
  • Title

    Research of SQL injection attack and prevention technology

  • Author

    Li Qian; Zhenyuan Zhu; Jun Hu; Shuying Liu

  • Author_Institution
    Institute of Information Engineering of Anhui Xinhua University, University of Science and Technology of China, Hefei, China
  • fYear
    2015
  • Firstpage
    303
  • Lastpage
    306
  • Abstract
    SQL injection attack is one of the most serious security vulnerabilities in Web application system, most of these vulnerabilities are caused by lack of input validation and SQL parameters use. Typical SQL injection attack and prevention technologies are introduced in the paper. The detecting methods not only validate user input, but also use type-safe SQL parameters. SQL injection defense model is established according to the detection processes, which is effective against SQL injection vulnerabilities.
  • Publisher
    ieee
  • Conference_Titel
    Estimation, Detection and Information Fusion (ICEDIF), 2015 International Conference on
  • Type

    conf

  • DOI
    10.1109/ICEDIF.2015.7280212
  • Filename
    7280212
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3660907