Secured web application using combination of Query Tokenization and Adaptive Method in preventing SQL Injection Attacks

Abstract

SQL Injection Attacks (SQLIAs) become a major issue nowadays which open opportunities for unrestricted access to the database that underlie web applications. The purpose of this research is to develop a multi-level prevention techniques in order to cater the SQLIAs. The proposed prevention technique combines Query Tokenization and Adaptive Method that will be implemented on multiple platforms that using asp.net programming language. This technique was tested using 5 test cases to ensure it effectiveness. The outcome of this project is frameworks of prevention technique that can be used for other developer to make sure their web application being secured and avoid the hackers exploit the databases by using SQL injection.