Preventing Injection Attack by Whitelisting Inputs
2013-06-03 16:30:33   来源:   评论:0 点击:

Abstract—Usage of web applications becomes larger than just web pages. Usage of dynamic pages brought lot of vulnerabilities. The web technology offers social networking, online shopping, electronic library, and etc. This paper proposes a possible technique to prevent injection attacks by whitelisting inputs. This model was developed using PHP (Hypertext Preprocessor) to makes our developers easy. The input elements are divided into text input and list input elements. The text input element is verified using regular expression. And the list input element verified comparing keys defined and submitted.

Index Terms—web security; injection attack; validation; php

Cite: Gopi Krishnan S and Sandeep K, "Preventing Injection Attack by Whitelisting Inputs," Lecture Notes on Information Theory, Vol.1, No.3, pp. 132-135, Sept. 2013. doi: 10.12720/lnit.1.3.132-135
Array

相关热词搜索:

上一篇:A Model-checking Algorithm for Formal-verification of Peer-to-peer Fault-tolerant Networks
下一篇:Arithmetic Coding-An Enhanced Implementation Using Locality

分享到: 收藏
评论排行