| SQL注入攻击的分析与防范 |
| |
| 引用本文: | 燕丽艳,曹天杰. SQL注入攻击的分析与防范[J]. 数字社区&智能家居, 2009, 0(9) |
| |
| 作者姓名: | 燕丽艳 曹天杰 |
| |
| 作者单位: | 中国矿业大学计算机科学与技术学院;徐州师范大学信息网络中心; |
| |
| 摘 要: | SQL注入是Web系统中经常存在的一种漏洞,攻击者利用这种漏洞可以通过SQL语句直接访问数据库,从而对系统的安全造成很大隐患。本文对SQL注入攻击的定义、产生原理以及攻击者常用的攻击方式做了比较详细的阐述,并从多个角度提出了相应的防范措施,用户可以根据自己的系统制定防范策略,从而提高系统的安全性。
|
| 关 键 词: | SQL注入 安全 SQL注入防范策略 |
The Analysis and Guard of SQL Injection Attack |
| |
| YAN Li-yan,,CAO Tian-jie. The Analysis and Guard of SQL Injection Attack[J]. Digital Community & Smart Home, 2009, 0(9) |
| |
| Authors: | YAN Li-yan CAO Tian-jie |
| |
| Affiliation: | 1. College of Computer Science and Technology;China University of Mining and Technology;Xuzhou 221116;China;2. The Center of Information and Network;Xuzhou Normal University;China |
| |
| Abstract: | SQL Injection is a Familiar loophole of Web System,using this loophole,the attacker could directly access the database and could led to great hidden troubles.In this paper, the def inition,principle and injection technology were expounded,we advanced prevention measures from different point of views, and the users could establish their own policies, so the security of the system is improved. |
| |
| Keywords: | SQL Injection security prevention measures of SQL Injection Attack |
| 本文献已被 CNKI 等数据库收录! |
|
