Abstract
As Internet is increasingly prosperous, Web services become more common in our social life. As users can access pages on the Web directly, Web application plays a vital role in various domains such as e-finance and public-services. Inevitably, it will be followed by unprecedented amount of attacks and exploitations. Amongst all of those attacks, SQL injection attacks have consistently high rank in last years due to corresponding vulnerabilities. It is crucial to checking this vulnerabilities before web services being public. In our paper we present an effective approach for testing, MOSA, and mutation operators set to its underpinning. Using this approach we can produce test inputs that cause executable and malignant SQL statement efficiently. Besides that, we do numerous experiments and the results demonstrate that the mutation approach can detect SQL injection vulnerabilities and generate inputs that bypass web application firewalls.
Author supplied keywords
Cite
CITATION STYLE
Huang, Y., Fu, C., Chen, X., Guo, H., He, X., Li, J., & Liu, Z. (2017). A mutation approach of detecting SQL injection vulnerabilities. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 10603 LNCS, pp. 175–188). Springer Verlag. https://doi.org/10.1007/978-3-319-68542-7_15
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
