Journal ArticleOPEN ACCESS

A simple and fast technique for detection and prevention of SQL injection attacks (SQLIAs)

International Journal of Security and its Applications (2013) 7(5) 53-66
DOI: 10.14257/ijsia.2013.7.5.05
3Citations
Citations of this article
10Readers
Mendeley users who have this article in their library.

Abstract

In SQLIA, attacker injects an input in the query in order to change the structure of the query intended by the programmer and therefore, gain access to the data in the underlying database. Due to the significance of the stored data, web application's security against SQLIA is vital. In this paper we propose a new technique based on static analysis and runtime validation for detection and prevention of SQLIAs. In this technique user inputs in SQL queries are removed and some information is gathered in order to make the detection easier and faster at runtime. Our experiments show that our proposed technique is fast, it has a low error rate and its detection rate is nearly 100%. © 2013 SERSC.

Author supplied keywords

Cite

CITATION STYLE

APA

Lashkaripour, Z., & Ghaemi Bafghi, A. (2013). A simple and fast technique for detection and prevention of SQL injection attacks (SQLIAs). International Journal of Security and Its Applications, 7(5), 53–66. https://doi.org/10.14257/ijsia.2013.7.5.05

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free