CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

A survey of SQL injection defense mechanisms

Kasra Amirtahmasebi (Institutionen för data- och informationsteknik, Nätverk och system, Datakommunikation och distribuerade system (Chalmers)) ; Seyed Reza Jalalinia (Institutionen för data- och informationsteknik, Nätverk och system, Datakommunikation och distribuerade system (Chalmers)) ; Saghar Khadem (Institutionen för data- och informationsteknik, Nätverk och system (Chalmers) )
International Conference for Internet Technology and Secured Transactions, ICITST 2009; London; United Kingdom; 9 November 2009 through 12 November 2009 (2009)
[Konferensbidrag, refereegranskat]

SQL Injection Attack (SQLIA) is a prevalent method which makes it possible for the attackers to gain direct access to the database and culminates in extracting sensitive information from the firm's database. In this survey, we have presented and analyzed six different SQL Injection prevention techniques which can be used for securing the data storage over the Internet. The survey starts by presenting Variable Normalization and will continue with AMNESIA, Prepared statements, SQL DOM, SQLrand and SQLIA prevention in stored procedures respectively.



Denna post skapades 2017-11-13.
CPL Pubid: 253087