D'silva, Karis and Vanajakshi, J and Manjunath, K N and Prabhu, Srikanth (2017) An Effective Method for Preventing SQL Injection Attack and Session Hijacking. In: International Conference On Recent Trends In Electronics Information Communication Technology, 20/05/2016, Bangalore India.

PDF 927.pdf - Published Version Restricted to Registered users only Download (558kB) | Request a copy

Abstract

Today’s world is very much dependent on the web applications, may it be shopping or financial transactions. Providing security to these web applications is very important. Most of the transaction information or the customer information is stored in the backend databases for these web applications. One of the vulnerabilities of these web applications is SQL (Structured Query Language) injection attack. Also, the web application sessions are prone to session hijacking attack, if the adversary can get hold of the session id. Considering that there are various tools available to retrieve session/HTTP cookies, this makes web applications very vulnerable session hijacking attacks. Though there are many ways proposed to defend the databases against SQL injection attacks, there is no sure shot way to prevent these SQL injection attacks. This project proposes an efficient technique for the prevention of SQL injection attack and session hijacking. The hashing technique is used for implementing the prevention these attacks

Actions (login required)

View Item