SQL-Guard design pattern

Ahmed A. Bahjat; Hamoud Al-Jamaan; Mohammad Alshayeb

SQL-Guard design pattern

Ahmed A. Bahjat, Hamoud Al-Jamaan, Mohammad Alshayeb

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Secured architecture is an essential part of implementing robust and reliable web-based applications. Security patterns is an area of interest to researchers in the last years, it aims to prevent security problems by building software without security holes. SQL injection is one of the key problems in building secure software and major threat categories for software systems. However, none of the proposed security patterns that appeared in the literature studied the SQL injection and the blind SQL injection attacks. In this paper, we propose an SQL-Guard design pattern to help in the SQL injection and the blind SQL injection.

Original language	English
Title of host publication	18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009
Pages	144-148
Number of pages	5
State	Published - 2009

Publication series

Name	18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009

Keywords

Blind SQL injection
Design patterns
SQL injection
Security

ASJC Scopus subject areas

Software

Cite this

@inproceedings{65413603c370471b8539310cd5f4accb,

title = "SQL-Guard design pattern",

abstract = "Secured architecture is an essential part of implementing robust and reliable web-based applications. Security patterns is an area of interest to researchers in the last years, it aims to prevent security problems by building software without security holes. SQL injection is one of the key problems in building secure software and major threat categories for software systems. However, none of the proposed security patterns that appeared in the literature studied the SQL injection and the blind SQL injection attacks. In this paper, we propose an SQL-Guard design pattern to help in the SQL injection and the blind SQL injection.",

keywords = "Blind SQL injection, Design patterns, SQL injection, Security",

author = "Bahjat, {Ahmed A.} and Hamoud Al-Jamaan and Mohammad Alshayeb",

year = "2009",

language = "English",

isbn = "9781615672417",

series = "18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009",

pages = "144--148",

booktitle = "18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009",

}

SQL-Guard design pattern. / Bahjat, Ahmed A.; Al-Jamaan, Hamoud ; Alshayeb, Mohammad.
18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009. 2009. p. 144-148 (18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - SQL-Guard design pattern

AU - Bahjat, Ahmed A.

AU - Al-Jamaan, Hamoud

AU - Alshayeb, Mohammad

PY - 2009

Y1 - 2009

N2 - Secured architecture is an essential part of implementing robust and reliable web-based applications. Security patterns is an area of interest to researchers in the last years, it aims to prevent security problems by building software without security holes. SQL injection is one of the key problems in building secure software and major threat categories for software systems. However, none of the proposed security patterns that appeared in the literature studied the SQL injection and the blind SQL injection attacks. In this paper, we propose an SQL-Guard design pattern to help in the SQL injection and the blind SQL injection.

AB - Secured architecture is an essential part of implementing robust and reliable web-based applications. Security patterns is an area of interest to researchers in the last years, it aims to prevent security problems by building software without security holes. SQL injection is one of the key problems in building secure software and major threat categories for software systems. However, none of the proposed security patterns that appeared in the literature studied the SQL injection and the blind SQL injection attacks. In this paper, we propose an SQL-Guard design pattern to help in the SQL injection and the blind SQL injection.

KW - Blind SQL injection

KW - Design patterns

KW - SQL injection

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=84883311920&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:84883311920

SN - 9781615672417

T3 - 18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009

SP - 144

EP - 148

BT - 18th International Conference on Software Engineering and Data Engineering 2009, SEDE 2009

ER -

SQL-Guard design pattern

Abstract

Publication series

Keywords

ASJC Scopus subject areas

Fingerprint

Cite this