{"title":"SQL注入安全漏洞的自动通用服务器级解决方案","authors":"A. Alfantookh","doi":"10.1109/ICEEC.2004.1374401","DOIUrl":null,"url":null,"abstract":"In this paper, the problem of SQL Injection attacks to web-based applications is discussed and described. The previous work on this problem is presented and the main problem of using manual solutions is highlighted. An automated universal server level solution calIed AUSELSQI is proposed and illustrated. The solution is shown to be universal for any Ype of web server and is applied automatically to all existing and future web applications residing on a web server. Experiments conducted show that the overhead of applying this solution is negligible. Comparison with other techniques is also presented.","PeriodicalId":180043,"journal":{"name":"International Conference on Electrical, Electronic and Computer Engineering, 2004. ICEEC '04.","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2004-09-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"An automated universal server level solution for SQL injection security flaw\",\"authors\":\"A. Alfantookh\",\"doi\":\"10.1109/ICEEC.2004.1374401\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, the problem of SQL Injection attacks to web-based applications is discussed and described. The previous work on this problem is presented and the main problem of using manual solutions is highlighted. An automated universal server level solution calIed AUSELSQI is proposed and illustrated. The solution is shown to be universal for any Ype of web server and is applied automatically to all existing and future web applications residing on a web server. Experiments conducted show that the overhead of applying this solution is negligible. Comparison with other techniques is also presented.\",\"PeriodicalId\":180043,\"journal\":{\"name\":\"International Conference on Electrical, Electronic and Computer Engineering, 2004. ICEEC '04.\",\"volume\":\"28 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2004-09-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Conference on Electrical, Electronic and Computer Engineering, 2004. ICEEC '04.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICEEC.2004.1374401\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Electrical, Electronic and Computer Engineering, 2004. ICEEC '04.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICEEC.2004.1374401","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
An automated universal server level solution for SQL injection security flaw
In this paper, the problem of SQL Injection attacks to web-based applications is discussed and described. The previous work on this problem is presented and the main problem of using manual solutions is highlighted. An automated universal server level solution calIed AUSELSQI is proposed and illustrated. The solution is shown to be universal for any Ype of web server and is applied automatically to all existing and future web applications residing on a web server. Experiments conducted show that the overhead of applying this solution is negligible. Comparison with other techniques is also presented.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
