SQL Injection Attack- Types and Classification A Review

Sitharthan. S, Sankaran. S

Abstract: SQL injection is a technique where the attacker injects an input in the query in order to change the structure of the query intended by the programmer and gaining the access of the database which results modification or deletion of the user’s data. In the injection it exploits a security vulnerability occurring in database layer of an application. SQL injection attack is the most common attack in websites in these days. Some malicious codes get injected to the database by unauthorized users and get the access of the database due to lack of input validation. Input validation is the most critical part of software security that is not properly covered in the design phase of software development life-cycle resulting in many security vulnerabilities. This paper presents the techniques for detection and prevention of SQL injection attack. There are no any known full proof defences available against such type of attacks. In this paper some predefined method of detection and the some modern techniques of preventions are discussed. This paper also describes countermeasures of SQL injection.

Keywords: SQL injection attack,

Title: SQL Injection Attack- Types and Classification A Review

Author: Sitharthan. S, Sankaran. S

International Journal of Computer Science and Information Technology Research

ISSN 2348-120X (online), ISSN 2348-1196 (print)

Research Publish Journals

Vol. 2, Issue 3, July 2014 - September 2014

Citation
Share : Facebook Twitter Linked In

Citation
SQL Injection Attack- Types and Classification A Review by Sitharthan. S, Sankaran. S