| SQL注入攻击问题与策略分析 |
| |
| 引用本文: | 董丽英. SQL注入攻击问题与策略分析[J]. 网络安全技术与应用, 2014, 0(3): 105-105,108 |
| |
| 作者姓名: | 董丽英 |
| |
| 作者单位: | 营口职业技术学院,辽宁115000 |
| |
| 摘 要: | SQL注入攻击是一项针对计算机数据库安全方面的攻击行为,随着世界范围内的动态交互性网站形式成为主流,B/S模式的网络服务结构被大多数企业和个人网站所采用,从技术角度来说,网站所使用的程序模块越多,所出现的漏洞几率就越大,遭到攻击的可能性也就越大;从程序员的角度来说,编写代码需要用户输入合法的指令并且通过判断,然而由于SQL注入形式具有较强的隐蔽性,只要通过对SQL语句的巧妙改造,就可以实现非法目的。
|
| 关 键 词: | SQL语句 SQL注入 数据库安全 策略分析 |
SQL injection attacks and strategy analysis |
| |
| Dong Liying. SQL injection attacks and strategy analysis[J]. Net Security Technologies and Application, 2014, 0(3): 105-105,108 |
| |
| Authors: | Dong Liying |
| |
| Affiliation: | Dong Liying |
| |
| Abstract: | SQL injection attack is a study of computer database security attacks, as the world within the scope of the dynamic interactive web form into the mainstream, B/S model of network service architecture been adopted by most of the enterprises and personal website, from a technical perspective, the site used by the program module, the more loopholes of the greater the risk, the greater the likelihood ofattack; From the point ofview ofa programmer, writing code requires users to enter legal instruction and by judgment, however due to the form of SQL injection has strong concealment, as long as to reform the SQL statements is clever, can be achieved for illegal purposes. |
| |
| Keywords: | SQL statements SQL injection.The database security Strategy analysis |
| 本文献已被 CNKI 维普 等数据库收录! |
|
