Analysis of SQL Injection Attacks on Website Service

Gregorius Hendy Kusuma

SUMMARY

Among the various types of software vulnerabilities, command injection is the most common type of threat in web applications. In command injection, SQL injection type of attacks areextremely prevalent, and ranked as the second most common form of attack on web. SQL injection attacks involve the construction of application’s input data that will result in the execution of malicious SQL statements. Most of the SQL injection detection techniques involve the code to be written along with the actual scripting code. These techniques do not detect errors in SQL statements. Hence, this paper proposes a mechanism to identify invalid SQL statements, to analyze the query for invalid non SQL key words, and to customize the captured errors. This mechanism is different from others by means of separation of the main scripting code and SQL injection code.

KEYWORDS

Web security - Website - SQL Injection

Free Access

PAGES

pp. 26 - 33

NUMBER

Volumen: 1 Número: 1 Parte: 0 (2018)

COLLECTIONS

Computing
Computing

JOURNALS RELATED

JURNAL TEKNOLOGI INFORMASI
Jurnal Ilmiah SINUS
JUTI: Jurnal Ilmiah Teknologi Informasi

Articles related

Analisis Perbandingan Performansi Waktu Respons Kueri antara MySQL PHP 7.2.27 dan NoSQL MongoDB DOI : 10.36294/jurti.v4i2.1695| Abstract views : 137 times

Olivia Maria Inacio Tavares,Sartje Mala Rangkoly,Sarah Bunda Desy Bawan,Ema Utami,Muhammad Syukri Mustafa

Abstract – Currently now, every function of the governmental and private agencies are required to manage the system work properly, effectively, and certainly efficient in terms of both time and system flexibility. Not a few have used the use of basi... see more

Revista: JURNAL TEKNOLOGI INFORMASI

Open Access

Implementasi Metode Algoritma K-Means Clustering pada Toko Eidelweis DOI : 10.36294/jurti.v4i2.1444| Abstract views : 58 times

Reno Supardi,Indra Kanedi

Abstract - In making the application, the implementation of the K-Means Clustering Algorithm method at the Eidelweis Store will be designed for this study to design software at the Eidelweis Store. The method used in making this application is a system d... see more

Revista: JURNAL TEKNOLOGI INFORMASI

Open Access

OTOMATISASI PENDISTRIBUSIAN ZAKAT PADA BADAN AMIL ZAKAT NASIONAL PROV. KEP. BANGKA BELITUNG

Harrizki Arie Pradana

Baznas Prov. Kep. Bangka Belitung is a zakat management body which was established based on law number 38 of 1999. Baznas is an agency that collects and distributes the zakat that is obtained. In the process of distributing zakat, there are things that a... see more

Revista: JURNAL TEKNIK INFORMATIKA DAN SISTEM INFORMASI

Open Access

PENGEMBANGAN DAN PENGUJIAN SISTEM INFORMASI AKADEMIK BERBASIS WEB UNTUK MENINGKATKAN PELAYANAN PADA SEKOLAH SMK

Suhartono Suhartono

This study aims to make web-based academic information software and find out the quality of devices according to ISO 9126 includes Functionality Reliability, Portability, and Usability. This research is a type of Research and Development Research (R&D). ... see more

Revista: semanTIK

Open Access

ANALYSIS OF QUALITY ASSURANCE ON SISTEM INFORMASI ZAKAT (SIZAKAT) THROUGH SOFTWARE TESTING

Abdul Haris, Wisnu Jatmiko, Ari Wibisono

Sistem Informasi Zakat (SIZakat) is a web-based information system that is used to assist in the management of zakat in Imam Bonjol Mosque Pondok Labu, South Jakarta. In this thesis, we conducted testing to the SIZakat application to know the quality and... see more

Revista: Jurnal Sistem Informasi

Open Access