SQL-IDS: A Specification-Based Approach for SQL-Injection Detection

Download Now
Provided by: Association for Computing Machinery
Topic: Data Management
Format: PDF
Vulnerabilities in web applications allow malicious users to obtain unrestricted access to private and confidential information. SQL injection attacks rank at the top of the list of threats directed at any database-driven application written for the Web. An attacker can take advantages of web application programming security flaws and pass unexpected malicious SQL statements through a web application for execution by the back-end database. This paper proposes a novel specification-based methodology for the detection of exploitations of SQL injection vulnerabilities.
Download Now

Find By Topic