文章基本信息

标题：An Efficient Protective Layer Against SQL Injection Attacks
本地全文：下载
作者：Bojken Shehu ; Aleksander Xhuvani
期刊名称：International Journal of Computer Science Issues
印刷版ISSN：1694-0784
电子版ISSN：1694-0814
出版年度：2014
卷号：11
期号：4
出版社：IJCSI Press
摘要：In this paper, we present a detailed discussion on different SQL injection attacks and their prevention technique. In addition, we proposed a new scheme for prevention of SQL injection attack, which consist of three blocks or three tier architecture: the clients, the application server and the database server. Our protective layer works between the clients and application server. Therefore, before sending SQL queries to the database, the protective layer will analyze the query to check the vulnerability. If found any, it reported else it forward the query to database server. The proposed scheme is efficient and overhead is negligible.
关键词：SQL Injection; Web Security; Vulnerabilities; Prevention; Database security.