SQL Injection Attacks Detection & Prevention Techniques

Artigo Acesso aberto Revisado por pares

SQL Injection Attacks Detection & Prevention Techniques

2017; Volume: 9; Issue: 5 Linguagem: Inglês

10.7763/ijcte.2017.v9.1165

ISSN

1793-8201

Autores

Gülsüm Yiğit, Merve Arnavutoğlu,

Tópico(s)

Spam and Phishing Detection

Resumo

SQL Injection Attack (SQLIA) is a type of code injection technique that threatens confidentiality, integrity, and availability of web databases.The attacker mostly exploits incorrectly filtered user inputs such as text fields in web applications and tries to insert malicious SQL statements into a legitimate query via the vulnerable user input.By doing so, the attacker can access, insert, modify, or delete critical information in a database without proper authorization.In this survey, we describe and categorize types of SQLIA, and analyze existing detection and prevention techniques against such attacks.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

SQL Injection Attacks Detection & Prevention Techniques