International Journal of Computer Theory and Engineering

Editor-In-Chief: Prof. Mehmet Sahinoglu
Frequency: Quarterly
ISSN: 1793-8201 (Print), 2972-4511 (Online)
E-mali:editor@ijcte.org
Publisher:IACSIT Press
OPEN ACCESS
4.1
CiteScore

⚠️ Important Security Notice: Beware of Fraudulent Emails Impersonating IJCTE Officials
Home > Articles > Archive > 2017 > Volume 9 Number 5 (Oct. 2017) >
IJCTE 2017 Vol.9(5): 351-356 ISSN: 1793-8201
DOI: 10.7763/IJCTE.2017.V9.1165

SQL Injection Attacks Detection & Prevention Techniques

Gülsüm Yiğit and Merve Arnavutoğlu

Abstract—Abstract—SQL Injection Attack (SQLIA) is a type of code injection technique that threatens confidentiality, integrity, and availability of web databases. The attacker mostly exploits incorrectly filtered user inputs such as text fields in web applications and tries to insert malicious SQL statements into a legitimate query via the vulnerable user input. By doing so, the attacker can access, insert, modify, or delete critical information in a database without proper authorization. In this survey, we describe and categorize types of SQLIA, and analyze existing detection and prevention techniques against such attacks.

Index Terms—Index Terms—SQL injection, attacks, cyber security.

Gülsüm Yiğit and Merve Arnavutoglu are with the Electronics and Computer Engineering Department, University of Gaziantep, Turkey (e-mail: gulsmyigit@gmail.com, merve.arnavutoglu@gmail.com).

[PDF]

Cite:Gülsüm Yiğit and Merve Arnavutoğlu, "SQL Injection Attacks Detection & Prevention Techniques," International Journal of Computer Theory and Engineering vol. 9, no. 5, pp. 351-356, 2017.

Article Metrics in Dimensions

Previous Paper
Static Checking of Range Assertions in JavaScript Programs
Next Paper
Pupil Detection and Tracking Based on a Round Shape Criterion by Image pPocessing Techniques for a Human Eye-Computer Interaction system
Menu