Corpus ID: 5969227

A Classification of SQL-Injection Attacks and Countermeasures

  title={A Classification of SQL-Injection Attacks and Countermeasures},
  author={William G. J. Halfond and J. Viegas and A. Orso},
  • William G. J. Halfond, J. Viegas, A. Orso
  • Published 2006
  • Computer Science
  • SQL injection attacks pose a serious security threat to Web applications: they allow attackers to obtain unrestricted access to the databases underlying the applications and to the potentially sensitive information these databases contain. [...] Key Method For each type of attack, we provide descriptions and examples of how attacks of that type could be performed. We also present and analyze existing detection and prevention techniques against SQL injection attacks. For each technique, we discuss its strengths…Expand Abstract
    592 Citations

    Figures, Tables, and Topics from this paper

    A Survey Of Sql Injection Countermeasures
    • 6
    • PDF
    Preventing SQL injection Attacks Using Cryptography Methods
    • 1
    • PDF
    A Weight-Based Symptom Correlation Approach to SQL Injection Attacks
    • 22
    SQL Injection: The Longest Running Sequel in Programming History
    • 1
    • PDF
    SQL Injection Detection and Prevention Using Input Filter Technique
    • 9
    • PDF
    Detecting and Defeating SQL Injection Attacks
    • 15
    • PDF