Analysis of SQL Injection Attacks on Website Service
Journal: Bit-Tech (Vol.1, No. 1)Publication Date: 2018-09-19
Authors : Gregorius Hendy Kusuma;
Page : 26-33
Keywords : Web security; Website; SQL Injection;
Abstract
Among the various types of software vulnerabilities, command injection is the most common type of threat in web applications. In command injection, SQL injection type of attacks are
extremely prevalent, and ranked as the second most common form of attack on web. SQL injection attacks involve the construction of application's input data that will result in the execution of malicious SQL statements. Most of the SQL injection detection techniques involve the code to be written along with the actual scripting code. These techniques do not detect errors in SQL statements. Hence, this paper proposes a mechanism to identify invalid SQL statements, to analyze the query for invalid non SQL key words, and to customize the captured errors. This mechanism is different from others by means of separation of the main scripting code and SQL injection code.
Other Latest Articles
- Decision Support System for Final Assignment with Analytical Hierarchy Process (AHP) Method. Case Study: Informatics Engineering Faculty of Engineering, Pancasila University
- Android-Based Information System Of Online Teaching Services With Geo-Location Determination
- Voice Over Internet Protocol Based Communication Design (VoIP) With 3CXSystemPhone On Android Smartphone
- CAREER EDUCATION IMPLEMENTATION IN GYMNASIUM FROM THE STUDENTS’ POINT OF VIEW
Last modified: 2019-04-01 14:57:25