Input-based Analysis Approach to Prevent SQL Injection Attacks

Input-based Analysis Approach to Prevent SQL Injection Attacks

연구 분야: Databases

학회: 2020 IEEE Region 10 Symposium (TENSYMP)

SQL injection attack is one of the serious security threat for a database application. It permits attackers to get unauthorized access to the database by inserting malicious SQL code into the database application through user input parameters. In this paper, we propose input-based analysis approach to detect and prevent SQL Injection Attacks (SQLIA), as an alternative to the existing solutions. This technique has two part (i) input categorization and (ii) input verifier. We provide a brief discussion of the proposal w.r.t the literature on security and time cost point of view.