Advertisement
Promo

Mobile working Toolkit in association with http://marketing.ianywhere.com/forms/EMEA09SUPSybaseMobilityLeadership-IDC

Download now

Application Layer Intrusion Detection for SQL Injection

PublisherAssociation for Computing Machinery
Format134.2KB PDFDate added12 Mar 2006
Topics Network Security, Security Tools, Intrusion Detection Systems
Downloads34

SQL injection attacks potentially affect all applications, especially web applications, that utilize a database backend. While these attacks are generally against the applications and not the database directly, there are some techniques that can be deployed to mitigate the risk at the database server. Database intrusion detection systems are often based on signatures of known exploits and honey tokens, traps set in the database. This paper examines the threat from SQL injection attacks, the reasons traditional database access control is not sufficient to stop them, and some of the techniques used to detect them. Moreover, it proposes a model for an anomalous SQL detector which observes the database traffic from the perspective of the database server itself.

Download now

Did you find this white paper useful?
35 out of 50 users found this white paper useful


  • Trackback
  • Clip Link

Related white papers

MessageLabs Intelligence : 2009 security Predictions

Having analyzed the global threat landscape for almost a decade, MessageLabs Team Skeptic™ is comprised of many world-renowned malware and spam experts who have a global view of threats across...


IDC Vendor Spotlight

Organised ubiquity is a must for organisations to sucessfully "project" their users in any given landspace, at any given time, with secuirty policy. This White Paper covers issues surrounding secure...


Trend Micro Enterprise Security white paper

This white paper reviews the content security threat landscape and how it has evolved into a more dangerous and high risk environment. The paper discussed how conventional content security approaches...


Smart Protection E-Book

"Outthink the Threat: Why conventional protection is no match for new data-stealing malware & the Trend Micro Smart Protection Network is." Discover how cyber criminals are rendering traditional security solutions...


Secure Desktop On-Demand Webcast

The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...


Trend Micro Web Threats WP

Web threats pose a broad range of risks, including financial damages, identity theft, loss of confidential business information, theft of network resources, damaged brand or personal reputation, and erosion of...


The Past, Present and Future of Whitelisting

The explosion in malware and zero-day vulnerabilities over the last several years has limited the effectiveness of blacklisting technology. While still important, it must be augmented with other technologies such...


Broadband Deals? Powered by Top 10 Broadband

150+ broadband packages

Compare 30+ mobile broadband deals

Mobile Broadband »
White Paper

Featured White Paper

IBM Virtualization Services

Virtualization is a powerful technology and can have profound effects on the datacenter; however, it should be viewed as a component of an overall IT strategy that will be able to support the enterprise's needs. IDC recommends that enterprises look at the entire architecture and determine how to best deploy virtualization

Download Now

Other White Papers

HP print solutions and 3M

the objective for 3M was to optimize office printing infrastructure at 3M locations worldwide...

IBM XIV® Storage System: Thin Provisioning Reinvented

Managing IT storage infrastructure is an endless balancing act of providing enterprise-class...

See All White Papers


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

Newsletters