Database security threats: A survey study

Al-Sayid, Nedhal A.; Aldlaeen, Dana

doi:10.1109/csit.2013.6588759

Cited by 19 publications

(20 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…N.A. Al Sayid and D. Aldlaeen [6], introduced a firewall technique to obstruct the SQL injection attack. A.Shastri and P.N.…”

Section: Literature Reviewmentioning

confidence: 99%

See 1 more Smart Citation

Safety Measures and Auto Detection against SQL Injection Attacks

Choudhary¹,

Singh²

2019

IJEAT

View full text Add to dashboard Cite

The SQL injection attack (SQLIA) occurred when the attacker integrating a code of a malicious SQL query into a valid query statement via a non-valid input. As a result the relational database management system will trigger these malicious query that cause to SQL injection attack. After successful execution, it may interrupts the CIA (confidentiality, integrity and availability) of web API. The vulnerability of Web Application Programming Interface (API) is the prior concern for any programming. The Web API is mainly based of Simple Object Access Protocol (SOAP) protocol which provide its own security and Representational State Transfer (REST) is provide the architectural style to security measures form transport layer. Most of the time developers or newly programmers does not follow the standards of safe programming and forget to validate their input fields in the form. This vulnerability in the web API opens the door for the threats and it’s become a cake walk for the attacker to exploit the database associated with the web API. The objective of paper is to automate the detection of SQL injection attack and secure the poorly coded web API access through large network traffic. The Snort and Moloch approaches are used to develop the hybrid model for auto detection as well as analyze the SQL injection attack for the prototype system

show abstract

“…N.A. Al Sayid and D. Aldlaeen [6], introduced a firewall technique to obstruct the SQL injection attack. A.Shastri and P.N.…”

Section: Literature Reviewmentioning

confidence: 99%

“…N.A. Al Sayid and D. Aldlaeen [8], proposed access control policy for user authentication and identification.P. Ghorbanzadeh et al [9], introduced firewall and virtual private for the prevention of unwanted intrusion on mobile database.…”

Section: Literature Reviewmentioning

confidence: 99%

Safety Measures and Auto Detection against SQL Injection Attacks

Choudhary¹,

Singh²

2019

IJEAT

View full text Add to dashboard Cite

show abstract

“…Kamtuo and Soomlek [7] introduced SQL injection commands dataset extraction, pre-processing, and usage of machine learning model analysis for detection, testing, and training. Al-Sayid and Aldlaeen [8] introduced the use of a web application firewall. However, these initiatives have common drawbacks; it does not have node verified signature.…”

Section: Introductionmentioning

confidence: 99%

Application of advanced encryption standard in the computer or handheld online year-round registration system

Calpito¹,

Olanday²,

Gallarde³

2022

IJEECS

View full text Add to dashboard Cite

<span lang="EN-US">With various severe security threats for web applications, ensuring security on the database layer itself is imperative. Hence, this study aims to protect data saved on the computer or handheld online year-round (CHOY) registration system using the advanced encryption standard (AES) to strengthen data security within the app so that even potential attackers gain access to the app's database; they cannot obtain valuable information because it is scrambled and unreadable. The proponents based the study's conceptual framework on the symmetric and asymmetric key algorithms and procedures manual on enrollment of Southern Isabela College of arts and trades (SICAT) and ISO 25010. The study consists of three elements: developing the CHOY web app imbued with AES, testing it in terms of online registration and spam prevention, and evaluating it using the ISO 25010 in terms of compatibility, reliability, and security. The evaluation results show that implementing the AES in the CHOY web app meets the ISO 25010 criteria mentioned above.</span>

show abstract

“…[5] proposed system provides better secure communication, Sybil attack detection, secure data aggregation and resilience against node capture attacks and replication attacks. AlSayid, N, et.al (2013) [6] represents databases must be secured well than any other systems in the organization. They allow data to be retained and shared electronically and the amount of data contained in these systems continues to grow at an exponential rate.…”

Section: Genetic Algorithmmentioning

confidence: 99%

Review on QoS and Security of Database System using Genetic Algorithm

Kumar¹,

Lal²,

Singh³

2017

IJCA

View full text Add to dashboard Cite

Both network security and quality of service (QoS) used up computational reference connected with IT procedure thereby could unsurprisingly influence the application form services. When it comes to confined computational reference, it is essential to type your communal impact concerning multilevel protection as well as QoS, which may be concurrently run optimization procedures to be able to give you a greater operation underneath the disposable computational resource. In this review has shown that the Genetic algorithm and Pareto-optimal security policies not only meet the security requirement of the user, but also provide the optimal QoS under the available computational resource. The overall objective of this paper is to analyze QoS and security of database system using Genetic algorithm.

show abstract

Database security threats: A survey study

Cited by 19 publications

References 4 publications

Safety Measures and Auto Detection against SQL Injection Attacks

Safety Measures and Auto Detection against SQL Injection Attacks

Application of advanced encryption standard in the computer or handheld online year-round registration system

Review on QoS and Security of Database System using Genetic Algorithm

Contact Info

Product

Resources

About