期刊名称:International Journal of Advanced Research In Computer Science and Software Engineering
印刷版ISSN:2277-6451
电子版ISSN:2277-128X
出版年度:2012
卷号:2
期号:7
出版社:S.S. Mishra
摘要:This paper gives an overview to the SQL Injection attacks (SQLIA) and methods to prevent them; we will discuss all the proposed models to block SQL Injections. We also describes the technique to prevent injections attacks occurring due to dynamic SQL statements in database stored procedures, which are often used in e-commerce applications. As we know that SQL injection attack can be easily prevented by applying more secure scheme in login phase. To address this problem, we studied and present here an overview of the different types of attacks with descriptions and examples of how attacks of that type could be performed and their detection & prevention schemes. This paper also contains strengths and weaknesses of various SQL injection attacks. At last we also proposed the scheme to handle the SQLIA and strong enough to prevent them
