Title: Decision tree classification - N tier solution for preventing SQL injection attack on websites

Authors: K. Naveen Durai; K. Baskaran

Addresses: Department of Computer Science and Engineering, Sri Eshwar College of Engineering, Coimbatore, Tamil Nadu, India ' Department of Electrical and Electronics Engineering, Alagappar Chettiar College of Engineering and Technology, Karaikudi, Tamil Nadu, India

Abstract: The current situation has dragged everyone into the contiguous usage of web applications. As every task is performed based on web applications, it is very important that we will have to think and secure the web applications to the most out of it. What is SQLIA? It could be defined as the one that is implemented by the users who actually does not possess any of the access permissions though they want to abuse the access rights in the database and steal the data or edit them or delete as desired. To achieve SQL injection attacks, malicious query is written to leak out the data that is highly confidential. Interference of the SQL injection attack shall be well executed through the public interface as that is the existing source that an application provides when the case is that the host-level entry point and the network are secured enough. Some the suspicions that a SQLIA pretend to expose is that it cannot be applied without single quotes, space or double dashes.

Keywords: SQLIA-SQL; injection attacks; hyper text transfer protocol; HTTP; OWASP; WEBSSARI.

DOI: 10.1504/IJENM.2019.103155

International Journal of Enterprise Network Management, 2019 Vol.10 No.3/4, pp.253 - 271

Received: 16 Nov 2018
Accepted: 24 Mar 2019

Published online: 17 Oct 2019 *

Full-text access for editors Access for subscribers Purchase this article Comment on this article