Research and Defense of a New Type of SQL Injection Attack

doi:10.15888/j.cnki.csa.005195

WeChat

Mobile website

Home > Archive>Volume 25, Issue 6, 2016 >225-230. DOI:10.15888/j.cnki.csa.005195

PDF HTML XML Export Cite reminder

Research and Defense of a New Type of SQL Injection Attack
DOI:
                        10.15888/j.cnki.csa.005195
                    
CSTR:
                        [cstr]
                    
Author:
                        
                        
                    
Affiliation:
Clc Number:
Fund Project:

Article

Figures

Metrics

Reference

Cited by

Materials

Comments

Abstract:

In this paper, a new type of SQL Injection attack through HTTP Headers is studied. Through analysising an example of the SQL Injection attack, the principle of the new type of SQL Injection attack is revealed, and the defense for the new type of SQL Injection attack is proposed. A defense model is established via such means as the IP filtering, data validation and machine learning, and this model has such advantages as low invasive, easy realization, high availability and strong expandability.

Reference

Cited by

Get Citation

赵阳,郭玉翠.新型SQL注入攻击的研究与防范.计算机系统应用,2016,25(6):225-230

Copy

Article Metrics

Abstract:
PDF:
HTML:
Cited by:

History

Received:October 06,2015
Revised:November 27,2015
Adopted:
Online: June 14,2016
Published:

Article QR Code

You are the firstVisitors
Copyright: Institute of Software, Chinese Academy of Sciences Beijing ICP No. 05046678-3
Address：4# South Fourth Street, Zhongguancun,Haidian, Beijing,Postal Code：100190
Phone：010-62661041 Fax： Email：csa (a) iscas.ac.cn
Technical Support：Beijing Qinyun Technology Development Co., Ltd.

Beijing Public Network Security No. 11040202500063