期刊名称:International Journal of Engineering and Computer Science
印刷版ISSN:2319-7242
出版年度:2015
卷号:4
期号:8
页码:13786-13790
DOI:10.18535/ijecs/v4i8.29
出版社:IJECS
摘要:Information is converted to digitalized format and then flows through the network medium. Security mechanisms are mostly usedto protect information from unauthorized intruders on the network. Secure communication between the medium as well as between thecommunicating entities is an essential part. There exist many types of attacks in which the SQL Injection is considered for the proposedwork. This paper proposed a novel method for the detection and proper replacement to the affected queries. SQL Injection is one of themajor attacks which will leaks the valuable information to the intruders. SQL Injection attacks target databases that are accessible throughfrontend structure of the website, and made flaws in the input validation logic of its components. Therefore, a strong method is needed toovercome the dispute. This paper proposed an efficient method for detecting the SQL injection by manipulating input attributes of the SQLquery and measuring the distance of query strings. It satisfies the both query analysis for both the static and dynamic manipulation of userqueries.
关键词:Information; Security; SQL Injection; Web Components; Databases
