| 一个通用防止SQL注入系统的设计与实现 |
| |
| 引用本文: | 方伟,方欣.一个通用防止SQL注入系统的设计与实现[J].湖南理工学院学报,2012(4):62-65,89. |
| |
| 作者姓名: | 方伟 方欣 |
| |
| 作者单位: | [1]湖南省交通科学研究院,长沙410015 [2]湖南理工学院信息与通信工程学院,湖南岳阳414006 |
| |
| 摘 要: | SQL注入攻击是一种很容易实现的入侵方式,攻击者通过检测网页地址的注入入口,构造SQL语句,非法获取网站资源.本文介绍了SQL注入形成的原因、检测方法,防止SQL注入的几种常见的措施,结合实际给出了一个SQL通用防注入的程序.
|
| 关 键 词: | SQL注入 攻击 检测 ASP |
A General System Design and Implementation of SQL Injection Precaution |
| |
| FANG Wei,FANG Xin.A General System Design and Implementation of SQL Injection Precaution[J].Journal of Hunan Institute of Science and Technology,2012(4):62-65,89. |
| |
| Authors: | FANG Wei FANG Xin |
| |
| Affiliation: | 1. Hunan Communications Research Institute, Changsha 410015, China; 2. College of Information and Communication Engineering, Hunan Institute of Science and Technology, Yueyang 414006,China) |
| |
| Abstract: | SQL injection attack is very easy to implement intrusion detection, an attacker through the webpage address into the entrance, constructs a SQL statement, illegal access to the web resources. The reasons of the formation of SQL injection, SQL injection methods and the several common measures on preventing SQL injection are introduced, and a general SQL prevent implantation procedure is given. |
| |
| Keywords: | SQL injection attack detection ASP |
| 本文献已被 CNKI 维普 等数据库收录! |
|
