Analysis of SQL Injection Attacks on Website Service

Authors

    Gregorius Hendy Kusuma( 1 )

    (1) Universitas Pancasila

DOI:


https://doi.org/10.32877/bt.v1i1.3

Keywords:


Web security, Website, SQL Injection

Abstract

Among the various types of software vulnerabilities, command injection is the most common type of threat in web applications. In command injection, SQL injection type of attacks are
extremely prevalent, and ranked as the second most common form of attack on web. SQL injection attacks involve the construction of application’s input data that will result in the execution of malicious SQL statements. Most of the SQL injection detection techniques involve the code to be written along with the actual scripting code. These techniques do not detect errors in SQL statements. Hence, this paper proposes a mechanism to identify invalid SQL statements, to analyze the query for invalid non SQL key words, and to customize the captured errors. This mechanism is different from others by means of separation of the main scripting code and SQL injection code.

Downloads

Download data is not yet available.

Downloads

Published

2018-09-19

How to Cite

[1]
G. H. Kusuma, “Analysis of SQL Injection Attacks on Website Service”, bit-Tech, vol. 1, no. 1, pp. 26–33, Sep. 2018.

Issue

Vol. 1 No. 1 (2018): First Impression on Computing

Section

Articles

License

I hereby assign and transfer to bit-Tech all exclusive copyright ownership rights to the above work. This includes, but is not limited to, the right to publish, republish, downgrade, distribute, transmit, sell, or use the work and other related materials worldwide, in whole, or in part, in all languages, in electronic, printed, or any other form of media, now known or hereafter developed and reserves the right to permit or license a third party to do any of the above. I understand that this exclusive right will belong to bit-Tech from the date the article is accepted for publication. I also understand that bit-Tech, as the copyright owner, has sole authority to license and permit reproduction of the article. I understand that, except for copyright, any other proprietary rights associated with the work (e.g. patents or other rights to any process or procedure) must be retained by the author. In addition, I understand that bit-Tech permits authors to use their papers in any way permitted by the applied Creative Commons license.

DOI : https://doi.org/10.32877/bt.v1i1.3
Abstract views: 567 / PDF downloads: 430