Discussion on the Detection and Prevention of SQL Injection
With the development and popularization of the Internet ,a number of web sites based on Web Server Language and back-end database schema have occurred,and their security becomes more severe.Aiming at the security problems of websites, this paper introduces the attack method--SQL injection,which has the maximum harmfulness to websites,also briefly presents the principle and process of SQL injection, in addition, elaborates and analyzes the detection methods and defensive measures of SQL Injection vulnerability in detail.
Jinglong Bu, Pengcheng Wang, Liqun Ai, Xiaoming Sang, Yungang Li
X. Z. Zhang and X. J. Zhang, "Discussion on the Detection and Prevention of SQL Injection", Advanced Materials Research, Vols. 287-290, pp. 3047-3050, 2011