• DocumentCode
    3237256
  • Title

    A database security testing scheme of web application

  • Author

    Haixia, Yang ; Zhihong, Nan

  • Author_Institution
    Bus. Coll., Shanxi Univ., Taiyuan, China
  • fYear
    2009
  • fDate
    25-28 July 2009
  • Firstpage
    953
  • Lastpage
    955
  • Abstract
    SQL injection attacks have posed a serious security threat to Web databases. To address this problem, this paper presents a scheme of database security testing. It studies how to detect potential input points of SQL injection, automatically generate test cases and find vulnerability of databases by running these test cases to make a simulation attack to an application. The database security testing can stop up SQL attack channels in the beginning.
  • Keywords
    Internet; SQL; program testing; security of data; SQL injection attacks; Web application; Web databases; database security testing scheme; security threat; Application software; Automatic testing; Computer science; Computer science education; Computer security; Data security; Databases; Information security; Internet; Libraries; Database Security Testing; SQL Injection; data input points; simulation attack;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Science & Education, 2009. ICCSE '09. 4th International Conference on
  • Conference_Location
    Nanning
  • Print_ISBN
    978-1-4244-3520-3
  • Electronic_ISBN
    978-1-4244-3521-0
  • Type

    conf

  • DOI
    10.1109/ICCSE.2009.5228560
  • Filename
    5228560
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3237256