We present the first sound program source transformation approach for automatically transforming the code of a legacy web application to employ PREPARE statements in place of unsafe SQL queries. Our approach therefore opens the way for eradicating the SQL injection threat vector from legacy web applications. © 2010 Springer-Verlag Berlin Heidelberg.
CITATION STYLE
Bisht, P., Sistla, A. P., & Venkatakrishnan, V. N. (2010). Automatically preparing safe SQL queries. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6052 LNCS, pp. 272–288). https://doi.org/10.1007/978-3-642-14577-3_21
Mendeley helps you to discover research relevant for your work.