Using positive tainting and syntax-aware evaluation to counter SQL injection attacks

William G. J. Halfond, Alessandro Orso, Panagiotis Manolios. Using positive tainting and syntax-aware evaluation to counter SQL injection attacks. In Michal Young, Premkumar T. Devanbu, editors, Proceedings of the 14th ACM SIGSOFT International Symposium on Foundations of Software Engineering, FSE 2005, Portland, Oregon, USA, November 5-11, 2006. pages 175-185, ACM, 2006. [doi]

Abstract

Abstract is missing.