Abstracting application-level web security

Scott, David

doi:10.1145/511495.511498

Cited by 36 publications

(49 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Other researchers have developed techniques specifically targeted at SQLIAs. Scott and Sharp [23] use a proxy to filter input and output data streams for a web application based on policy rules defined at the enterprise level. Although this technique can be effective against SQLIA, it requires developers to correctly specify filtering rules for each application input.…”

Section: Related Workmentioning

confidence: 99%

Amnesia

Halfond

Orso

2005

Proceedings of the 20th IEEE/ACM International Conference on Automated Software Engineering

368

View full text Add to dashboard Cite

The use of web applications has become increasingly popular in our routine activities, such as reading the news, paying bills, and shopping on-line. As the availability of these services grows, we are witnessing an increase in the number and sophistication of attacks that target them. In particular, SQL injection, a class of codeinjection attacks in which specially crafted input strings result in illegal queries to a database, has become one of the most serious threats to web applications. In this paper we present and evaluate a new technique for detecting and preventing SQL injection attacks. Our technique uses a model-based approach to detect illegal queries before they are executed on the database. In its static part, the technique uses program analysis to automatically build a model of the legitimate queries that could be generated by the application. In its dynamic part, the technique uses runtime monitoring to inspect the dynamically-generated queries and check them against the statically-built model. We developed a tool, AMNESIA, that implements our technique and used the tool to evaluate the technique on seven web applications. In the evaluation we targeted the subject applications with a large number of both legitimate and malicious inputs and measured how many attacks our technique detected and prevented. The results of the study show that our technique was able to stop all of the attempted attacks without generating any false positives.

show abstract

Section: Related Workmentioning

confidence: 99%

Amnesia

Halfond

Orso

2005

Proceedings of the 20th IEEE/ACM International Conference on Automated Software Engineering

368

View full text Add to dashboard Cite

show abstract

“…Russell A. Mcclure introduces SQLDOM [10] approach removes tautology, incorrect query, union query,piggy -backed query attack but stored procedure and scripting attack was not removed Meijunjin SQLInjectionGen [13]approach removes tautology, incorrect query, union query,piggy-backed query attack but stored procedure and scripting attack was not removed Engine kirda introduces Noxes [19] approach removes scripting attack but tautology, union query, piggy -backed query ,incorrect query, stored procedure attack was not removed. David scott introduces SPDL Based [17] approach removes scripting attack but tautology, union query, piggy -backed query ,incorrect query, stored procedure attack was not removed.…”

Section: Introductionmentioning

confidence: 99%

Load balancer plug in filter:- Identification and prevention of web attacks

Babanne

Navale

2014

2014 International Conference on Control, Instrumentation, Communication and Computational Technologies (ICCICCT)

View full text Add to dashboard Cite

The security is issue in online applications. Online transactions are increasing day by day due to internet but the attack are also increasing in same propotion due to poor architecture of the system , improper validations of the system. The modification in input query by the intruder leads to major damage to the database. Many tools and products were developed to avoid this but no approach was satisfactory to prevent these. A load balancer plugin filter approach is used in this paper to prevent all types of web attacks . The load balancing approach is used to balance the load on server when no of request increases which improves efficiency and security of the systems

show abstract

“…Some research is geared towards attempting to validate user inputs [18,19,20]. Unfortunately, this is appears to be difficult because most existing approaches have little knowledge of the syntactic structure of generated queries, hence some malicious inputs still manage to pass through [3].…”

Section: Introductionmentioning

confidence: 99%

SQLProb

Liu

Yuan

Wijesekera

et al. 2009

Proceedings of the 2009 ACM Symposium on Applied Computing

View full text Add to dashboard Cite

SQL injection attacks (SQLIAs) consist of maliciously crafted SQL inputs, including control code, used against Databaseconnected Web applications. To curtail the attackers' ability to generate such attacks, we propose an SQL Proxy-based Blocker (SQLProb). SQLProb harnesses the effectiveness and adaptivity of genetic algorithms to dynamically detect and extract users' inputs for undesirable SQL control sequences. Compared to state-of-the-art protection mechanisms, our method does not require any code changes on either the client, the web-server or the back-end database. Rather, our system uses a proxy that seamlessly integrates with existing operational environments offering protection to front-end web servers and back-end databases. To evaluate the overhead and the detection performance of our system, we implemented a prototype of SQLProb which we tested using real SQL attacks. Our experimental results show that we can detect all SQL injection attacks while maintaining very low resource utilization.

show abstract

Abstracting application-level web security

Cited by 36 publications

References 4 publications

Amnesia

Amnesia

Load balancer plug in filter:- Identification and prevention of web attacks

SQLProb

Contact Info

Product

Resources

About