SQL INJECTION ATTACK DETECTION AND PREVENTION

SQL INJECTION ATTACK DETECTION AND PREVENTION

Nowadays SQL injection attacks (SQLIAs) and cross scripting increased in real web applications very much, and the SQL injection attacks damages the databases through web applications. Injection queries are different type of way to attack the databases. This paper address the issue of SQLIA's an...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:International journal of engineering science and technology 2012-04, Vol.4 (4), p.1396-1396
Hauptverfasser: Ramasamy, Perumalsamy, Abburu, Sunitha
Format: Artikel
Sprache:eng
Schlagworte:
Conduction
Dynamic tests
Dynamics
Queries
Query languages
Scripts
Servers
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Nowadays SQL injection attacks (SQLIAs) and cross scripting increased in real web applications very much, and the SQL injection attacks damages the databases through web applications. Injection queries are different type of way to attack the databases. This paper address the issue of SQLIA's and script in an efficient way. The proposed approach detects and prevents all the Injection queries as well as the cross scripting through the Framework and Static analysis and Dynamic analysis. The contribution is twofold 1. SQL Injection Attack Detection and prevention 2. SQL Injection Reports. These techniques have been implemented in ASP.Net and SQL Server and tested by conducting various experiments and prove that the web applications and database is protected from scripting and SQL injection queries.
ISSN:0975-5462
0975-5462