| SQL Injection分析与防范 |
| |
| 引用本文: | 赵文龙,朱俊虎,王清贤.SQL Injection分析与防范[J].计算机工程与设计,2006,27(2):300-302,306. |
| |
| 作者姓名: | 赵文龙 朱俊虎 王清贤 |
| |
| 作者单位: | 信息工程大学,信息工程学院,网络工程系,河南,郑州,450002 |
| |
| 摘 要: | SQL Injection是当前网站安全的主要问题之一。首先阐述了SQL Injection网络攻击的基本原理,然后对黑客利用SQL Injection技术攻击的一般过程进行了分析。在此基础上针对SQL Injection攻击的具体预防措施进行了详细的分析和研究,并且提出了现有防范技术所存在的一些问题及其解决方法。
|
| 关 键 词: | 网络安全 网络攻击 正则表达式 |
| 文章编号: | 1000-7024(2006)02-0300-03 |
| 收稿时间: | 2004-11-29 |
| 修稿时间: | 2004-11-29 |
Analysis and defense of SQL Injection |
| |
| ZHAO Wen-long,ZHU Jun-hu,WANG Qing-xian.Analysis and defense of SQL Injection[J].Computer Engineering and Design,2006,27(2):300-302,306. |
| |
| Authors: | ZHAO Wen-long ZHU Jun-hu WANG Qing-xian |
| |
| Affiliation: | School of Information Engineering, Institute of Information Engineering, Zhengzhou 450002, China |
| |
| Abstract: | SQL injection constitutes one of the major web server security problems. The basic principle of it was introduced and the SQL injection attacking problem in the network was discussed. Then the common attacking process of SQL injection was analyzed and particularly the denfense methods to it. Futhermore, it presents some solution to the problems of the current defense technology at last. |
| |
| Keywords: | SQL Injection |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
