Using positive tainting and syntax-aware evaluation to counter SQL injection attacks - researchr publication related

researchr

You are not signed in
Sign in
Sign up

William G. J. Halfond, Alessandro Orso, Panagiotis Manolios. Using positive tainting and syntax-aware evaluation to counter SQL injection attacks. In Michal Young, Premkumar T. Devanbu, editors, Proceedings of the 14th ACM SIGSOFT International Symposium on Foundations of Software Engineering, FSE 2005, Portland, Oregon, USA, November 5-11, 2006. pages 175-185, ACM, 2006. [doi]

The following publications are possibly variants of this publication:

Preventing SQL injection attacks using AMNESIAWilliam G. J. Halfond, Alessandro Orso. ICSE 2006: 795-798 [doi]

Combining static analysis and runtime monitoring to counter SQL-injection attacksWilliam G. J. Halfond, Alessandro Orso. sigsoft, 30(4):1-7, 2005. [doi]

runs on WebDSL