本文已被:浏览 1437次 下载 4007次
Received:June 14, 2012 Revised:July 11, 2012
Received:June 14, 2012 Revised:July 11, 2012
中文摘要: 介绍利用SQL Server存储过程来提高网上考试系统的安全性, 讨论SQL注入攻击及采用存储过程的方法进行防御, 给出了网上考试系统中随机生成试卷等存储过程的实现方法. 采用存储过程能有效防御SQL注入攻击, 提高系统的安全性.
中文关键词: 存储过程 安全性 网上考试 SQL注入 SQL Server
Abstract:This paper describes the use of stored procedures to improve the security of online examination system. We discuss SQL injection attacks , the method of defense using the stored procedures , and some stored procedures of the online examination system,such as randomly generated papers. Use of stored procedures effectually secures against SQL injection attacks, improves the system security.
文章编号: 中图分类号: 文献标志码:
基金项目:
| Author Name | Affiliation |
| HUANG Long-Jun | Department of Computer Science, Shaoxing University, Shaoxing 312000, China |
| Author Name | Affiliation |
| HUANG Long-Jun | Department of Computer Science, Shaoxing University, Shaoxing 312000, China |
引用文本:
黄龙军.存储过程技术在网络考试系统SQL注入攻击防御上的应用.计算机系统应用,2013,22(1):103-106
HUANG Long-Jun.Application of Stored Procedures to Defense against SQL Injection Attacks in Online Examination System.COMPUTER SYSTEMS APPLICATIONS,2013,22(1):103-106
黄龙军.存储过程技术在网络考试系统SQL注入攻击防御上的应用.计算机系统应用,2013,22(1):103-106
HUANG Long-Jun.Application of Stored Procedures to Defense against SQL Injection Attacks in Online Examination System.COMPUTER SYSTEMS APPLICATIONS,2013,22(1):103-106
