期刊名称:International Journal of Computer Science and Information Technologies
电子版ISSN:0975-9646
出版年度:2014
卷号:5
期号:1
页码:51-54
出版社:TechScience Publications
摘要:SQL Injection Attack (SQLIA) is a method with help of attackers attack the data directly into the database in an unofficial way and accomplish the maximum important information for remove and modifying information from any corporation. In this paper, we examine the state of the separate types of attacks with explanation and illustration of how attacks of that type can be performed and describe their detection and prevention system .It is also describe the strength and weakness of SQL injection attack .It is wellknown to all that SQL injection attacks can be easily prevented by applying more secure schemes in login phase and after login phase. Hence, we accomplish our proposed scheme through SQLENCP, the SQL injection prevention by cryptography using hashing technique, to handle the SQLIA and prevent them. Even though, the planned implemented system is unable to handle all the SQL injection attacks, but it can avoid tautology attacks, union based query attacks & illegal structured query attacks.
