{"title":"基于输入的分析方法防止SQL注入攻击","authors":"Angshuman Jana, Priyam Bordoloi, D. Maity","doi":"10.1109/TENSYMP50017.2020.9230758","DOIUrl":null,"url":null,"abstract":"SQL injection attack is one of the serious security threat for a database application. It permits attackers to get unauthorized access to the database by inserting malicious SQL code into the database application through user input parameters. In this paper, we propose input-based analysis approach to detect and prevent SQL Injection Attacks (SQLIA), as an alternative to the existing solutions. This technique has two part (i) input categorization and (ii) input verifier. We provide a brief discussion of the proposal w.r.t the literature on security and time cost point of view.","PeriodicalId":6721,"journal":{"name":"2020 IEEE Region 10 Symposium (TENSYMP)","volume":"37 1","pages":"1290-1293"},"PeriodicalIF":0.0000,"publicationDate":"2020-06-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Input-based Analysis Approach to Prevent SQL Injection Attacks\",\"authors\":\"Angshuman Jana, Priyam Bordoloi, D. Maity\",\"doi\":\"10.1109/TENSYMP50017.2020.9230758\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"SQL injection attack is one of the serious security threat for a database application. It permits attackers to get unauthorized access to the database by inserting malicious SQL code into the database application through user input parameters. In this paper, we propose input-based analysis approach to detect and prevent SQL Injection Attacks (SQLIA), as an alternative to the existing solutions. This technique has two part (i) input categorization and (ii) input verifier. We provide a brief discussion of the proposal w.r.t the literature on security and time cost point of view.\",\"PeriodicalId\":6721,\"journal\":{\"name\":\"2020 IEEE Region 10 Symposium (TENSYMP)\",\"volume\":\"37 1\",\"pages\":\"1290-1293\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-06-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 IEEE Region 10 Symposium (TENSYMP)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/TENSYMP50017.2020.9230758\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE Region 10 Symposium (TENSYMP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TENSYMP50017.2020.9230758","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Input-based Analysis Approach to Prevent SQL Injection Attacks
SQL injection attack is one of the serious security threat for a database application. It permits attackers to get unauthorized access to the database by inserting malicious SQL code into the database application through user input parameters. In this paper, we propose input-based analysis approach to detect and prevent SQL Injection Attacks (SQLIA), as an alternative to the existing solutions. This technique has two part (i) input categorization and (ii) input verifier. We provide a brief discussion of the proposal w.r.t the literature on security and time cost point of view.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
