A Survey on SQL Injection Attacks, Detection and Prevention Techniques

被引：0

作者：

Kumar, Puspendra ^{[1
]}

Pateriya, R. K. ^{[1
]}

机构：

[1] Maulana Azad Natl Inst Technol, Dept Comp Sci & Engn, Bhopal 462051, India

来源：

2012 THIRD INTERNATIONAL CONFERENCE ON COMPUTING COMMUNICATION & NETWORKING TECHNOLOGIES (ICCCNT) | 2012年

关键词：

SQL Injection Attacks; Static Analysis; Dynamic analysis; Detection; Prevention;

D O I：

暂无

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

SQL Injection poses a serious security issue over the Internet or over web application. In SQL injection attacks, hackers can take advantage of poorly coded Web application software to introduce malicious code into the organization's systems and network. The vulnerability exists when a Web application do not properly filter or validate the entered data by a user on a Web page. Large Web applications have hundreds of places where users can input data, each of which can provide a SQL injection opportunity. Attacker can steal confidential data of the organization with these attacks resulting loss of market value of the organization. This paper presents an effective survey of SQL Injection attack, detection and prevention techniques.

引用

页数：5

共 50 条

[1] A survey on SQL injection attacks, detection and prevention techniques – a tertiary study
Hallo, María
Suntaxi, Gabriela
[J]. International Journal of Security and Networks, 2022, 17 (03) : 193 - 202
[2] A Survey on SQL Injection Attacks, Detection and Prevention
Hu, Jianwei
Zhao, Wei
Cui, Yanpeng
[J]. ICMLC 2020: 2020 12TH INTERNATIONAL CONFERENCE ON MACHINE LEARNING AND COMPUTING, 2018, : 483 - 488
[3] A systematic review of detection and prevention techniques of SQL injection attacks
Nasereddin, Mohammed
ALKhamaiseh, Ashaar
Qasaimeh, Malik
Al-Qassas, Raad
[J]. INFORMATION SECURITY JOURNAL, 2023, 32 (04): : 252 - 265
[4] Detection and prevention of SQL injection attacks
Halfond, William G. J.
Orso, Alessandro
[J]. MALWARE DETECTION, 2007, : 85 - +
[5] LsSQLIDP : Literature survey on SQL injection detection and prevention techniques
Varshney, Karishma
Ujjwal, R. L.
[J]. JOURNAL OF STATISTICS & MANAGEMENT SYSTEMS, 2019, 22 (02): : 257 - 269
[6] A Framework for the Detection and Prevention of SQL Injection Attacks
Shafie, Emad
Cau, Antonio
[J]. PROCEEDINGS OF THE 11TH EUROPEAN CONFERENCE ON INFORMATION WARFARE AND SECURITY, 2012, : 329 - 336
[7] A survey on the detection of SQL injection attacks and their countermeasures
Nagpal, Bharti
Chauhan, Naresh
Singh, Nanhay
[J]. Journal of Information Processing Systems, 2017, 13 (04): : 689 - 702
[8] A Hybrid Method for Detection and Prevention of SQL Injection Attacks
Ghafarian, Ahmad
[J]. 2017 COMPUTING CONFERENCE, 2017, : 833 - 838
[9] Detection and Prevention of SQL Injection Attacks on Web Applications
Fouad, Yasser
Elshazly, Khaled
[J]. INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2013, 13 (08): : 1 - 7
[10] Evaluation of SQL Injection Detection and Prevention Techniques
Tajpour, Atefeh
Shooshtari, Mohammad JorJor Zade
[J]. 2010 SECOND INTERNATIONAL CONFERENCE ON COMPUTATIONAL INTELLIGENCE, COMMUNICATION SYSTEMS AND NETWORKS (CICSYN), 2010, : 216 - 221

← 1 2 3 4 5 →