• DocumentCode
    2215163
  • Title

    An adaptive method preventing database from SQL injection attacks

  • Author

    Shan, Li ; Xiaorui, Dong ; Hong, Rao

  • Author_Institution
    Center of Comput., Nanchang Univ., Nanchang, China
  • Volume
    1
  • fYear
    2010
  • fDate
    20-22 Aug. 2010
  • Abstract
    SQL injection is an attack technique used to exploit code by altering back-end SQL statements through manipulating input. This paper proposes a novel methodology of preventing SQL injection attacks by building a protective adaptive shell. The protective shell is located between the application and the back-end database and has three layers to block illegal SQL statements. It could be adaptive after training and reduce the possibility of data leakage to protect the database system.
  • Keywords
    SQL; database management systems; invasive software; SQL injection attack; adaptive method; backend SQL statement; backend database; data leakage; database system protection; protective adaptive shell; Databases; SQL injection; Three-tier mode; adaptive; database; protective shell;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Advanced Computer Theory and Engineering (ICACTE), 2010 3rd International Conference on
  • Conference_Location
    Chengdu
  • ISSN
    2154-7491
  • Print_ISBN
    978-1-4244-6539-2
  • Type

    conf

  • DOI
    10.1109/ICACTE.2010.5579002
  • Filename
    5579002
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2215163