UPM Institutional Repository

Systematic literature review on SQL injection attack


Citation

Aminu, Lawal Muhammad and Md Sultan, Abu Bakar and Shakiru, Ayanloye O. (2016) Systematic literature review on SQL injection attack. International Journal of Soft Computing, 11 (1). pp. 26-35. ISSN 1816-9503

Abstract

SQL injection attack is a common threat to web applications that utilizes poor input validation to implement attack on a target database. It is becoming a very serious problem in web applications as successful execution leads to loss of integrity and confidentiality and this makes it a very sensitive issue of software security. The study presents a Systematic Literature Review (SLR) on SQL Injection Attacks (SQLIA) following Kitchenham's procedure of performing systematic literature review. This study gives a review on SQL injection attack, detection and prevention techniques. In the end, an evaluation of the techniques is carried out to check the effectiveness of each technique based on how many method of attack it can detect and prevent. It is imperative to note that a good number of the evaluated techniques were able to detect and prevent all types of SQLIA based on the selected criteria. To determine the best technique resources such as memory and processing time need to be considered in the evaluation.


Download File

[img]
Preview
PDF (Abstract)
Systematic literature review on SQL injection attack.pdf

Download (34kB) | Preview

Additional Metadata

Item Type: Article
Divisions: Faculty of Computer Science and Information Technology
DOI Number: https://doi.org/10.3923/ijscomp.2016.26.35
Publisher: Medwell Journals
Keywords: Detection; Prevention; Software security; SQL injection attack; Systematic literature review
Depositing User: Nurul Ainie Mokhtar
Date Deposited: 20 Jun 2016 05:57
Last Modified: 20 Jun 2016 05:57
Altmetrics: http://www.altmetric.com/details.php?domain=psasir.upm.edu.my&doi=10.3923/ijscomp.2016.26.35
URI: http://psasir.upm.edu.my/id/eprint/29102
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item