New Strategy for Mitigating of SQL Injection Attack | Zendy

Ammar Alazab | Zendy; Ansam Khresiat | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

New Strategy for Mitigating of SQL Injection Attack

Author(s) -

Ammar Alazab,

Ansam Khresiat

Publication year - 2016

Publication title -

international journal of computer applications

Language(s) - English

Resource type - Journals

ISSN - 0975-8887

DOI - 10.5120/ijca2016911974

Subject(s) - computer science , sql injection , sql , computer security , database , world wide web , query by example , search engine , web search query

SQL injection attack (SQLIA) is a serious threat to web applications. A successful SQLIAs can have serious consequences to the victimized organization that include financial lose, reputation lose, compliance and regulatory breach. Therefore, developing approaches for mitigating SQLIA is paramount important. To this end, we propose an approach based on negative tainting along with SQL keyword analysis for detecting and preventing SQLIA. We have tested our proposed approach on all types of SQLIAs techniques by generating SQL queries containing legitimate SQL commands and SQLIA. We present an analysis and evaluation of the proposed approach to demonstrate its effectiveness in detecting and protecting SQLIA attack.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research