International Journal of Advanced Research in Computer Science & Technology (IJARCST)
As web application security breaches and attempts rise, developers are increasingly being asked to take more responsibility for the security of their applications. In fact security-related concerns are hard to apply as they involve adding complexity to already complex code. In this paper, the authors have proposed a lightweight approach to prevent SQL Injection attacks, that it can actually be well defended by using LINQ (Language INtegrated Query). LINQ to SQL, when used exclusively for data access, eliminates the possibility of SQL injection in the users' application for one simple reason: every SQL query that LINQ executes on their behalf is parameterized.