A Method of Detecting Sql Injection Attack to Secure Web Applications

Sruthy Manmadhan; Manesh T

首页> 外文期刊>International Journal of Distributed and Parallel Systems >A Method of Detecting Sql Injection Attack to Secure Web Applications

【24h】

A Method of Detecting Sql Injection Attack to Secure Web Applications

机译：一种检测Sql注入攻击以保护Web应用程序的方法

获取原文

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Web applications are becoming an important part of our daily life. So attacks against them also increases rapidly. Of these attacks, a major role is held by SQL injection attacks (SQLIA). This paper proposes a new method for preventing SQL injection attacks in JSP web applications. The basic idea is to check before execution, the intended structure of the SQL query. For this we use semantic comparison. Our focus is on stored procedure attack in which query will be formed within the database itself and so difficult to extract that query structure for validation. Also this attack is less considered in the literature

机译：Web应用程序正在成为我们日常生活的重要组成部分。因此，针对他们的攻击也迅速增加。在这些攻击中，SQL注入攻击（SQLIA）扮演着主要角色。本文提出了一种防止JSP Web应用程序中SQL注入攻击的新方法。基本思想是在执行之前检查SQL查询的预期结构。为此，我们使用语义比较。我们的重点是存储过程攻击，其中查询将在数据库本身内部形成，因此很难提取该查询结构进行验证。同样，在文献中也很少考虑这种攻击

著录项

来源
《International Journal of Distributed and Parallel Systems》 |2012年第6期|共页
作者
Sruthy Manmadhan; Manesh T;
展开▼
作者单位

展开▼
收录信息
原文格式 PDF
正文语种
中图分类 TP311.13;
关键词

相似文献

外文文献
中文文献
专利

1. SQL INJECTION ATTACK IN WEB APPLICATION AND ITS MITIGATION USING PREVENTION MECHANISM TO SECURE WEB APPLICATION DATABASE [J] . Mital Parekh, Mr. Chandresh Parekh International Journal on Computer Science and Engineering . 2019,第4期

机译：使用预防机制保护Web应用程序数据库中Web应用程序中的SQL注入攻击及其缓解
2. A Discriminative Survey on SQL Injection Methods to Detect Vulnerabilities in Web applications [J] . Nrottam Chaubey Sumit Sharma Computer Engineering and Intelligent Systems . 2016,第6期

机译：对用于检测Web应用程序中漏洞的SQL注入方法的歧视性调查
3. Securing Asp.Net Applications Against Sql Injections Attacks [J] . S. Sayeed, A.A.A. Al-habsi, I. Yusof, Australian Journal of Basic and Applied Sciences . 2012,第12期

机译：保护Asp.Net应用程序免受SQL注入攻击
4. Secured web application using combination of Query Tokenization and Adaptive Method in preventing SQL Injection Attacks [C] . Abu Othman Noor Ashitah, Mohd Ali Fakariah Hani, Mohd Noh Mashyum Binti International Conference on Computer, Communications, and Control Technology . 2014

机译：结合使用查询令牌化和自适应方法的安全Web应用程序，可防止SQL注入攻击
5. Authentication and SQL-Injection Prevention Techniques in Web Applications [D] . Cetin, Cagri. 2019

机译：Web应用中的身份验证和SQL注入预防技术
6. Vulnerability Assessment of IPv6 Websites to SQL Injection and Other Application Level Attacks [O] . Ying-Chiang Cho, Jen-Yi Pan 2013

机译：IPv6网站对SQL注入和其他应用程序级别攻击的漏洞评估
7. A Method of Detecting Sql Injection Attack to Secure Web Applications [O] . Sruthy Manmadhan 2012

机译：一种检测SQL注入攻击以保护Web应用的方法
8. Detecting Distributed SQL Injection Attacks in a Eucalyptus Cloud Environment. [R] . Kebert, A., Barnejee, B., Solano, J., 2013

机译：在Eucalyptus云环境中检测分布式sQL注入攻击。

A Method of Detecting Sql Injection Attack to Secure Web Applications

摘要

著录项

相似文献

相关主题

期刊订阅