مرکز منطقه ای اطلاع رساني علوم و فناوري - Research of SQL injection attack and prevention technology

DocumentCode :

3660907

Title :

Research of SQL injection attack and prevention technology

Author :

Li Qian; Zhenyuan Zhu; Jun Hu; Shuying Liu

Author_Institution :

Institute of Information Engineering of Anhui Xinhua University, University of Science and Technology of China, Hefei, China

fYear :

2015

Firstpage :

303

Lastpage :

306

Abstract :

SQL injection attack is one of the most serious security vulnerabilities in Web application system, most of these vulnerabilities are caused by lack of input validation and SQL parameters use. Typical SQL injection attack and prevention technologies are introduced in the paper. The detecting methods not only validate user input, but also use type-safe SQL parameters. SQL injection defense model is established according to the detection processes, which is effective against SQL injection vulnerabilities.

Publisher :

ieee

Conference_Titel :

Estimation, Detection and Information Fusion (ICEDIF), 2015 International Conference on

Type :

conf

DOI :

10.1109/ICEDIF.2015.7280212

Filename :

7280212

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3660907