SQL Injection Prevention Technique Using Cryptography

Author

Jayakrishnan S. KarunanithiFollow

Date of Award

12-2018

Culminating Project Type

Starred Paper

Degree Name

Information Assurance: M.S.

Department

Information Assurance and Information Systems

College

Herberger School of Business

First Advisor

Susantha Herath

Second Advisor

Lynn Collen

Third Advisor

Balasubramanian Kasi

Creative Commons License

This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.

Keywords and Subject Headings

SQL injection, Cryptography, Web application, Vulnerabilities, Authentication, Encryption

Abstract

In our day-to-day life, web applications play an important role such as shopping, making financial transactions, social networking, etc. Most of the business prefer online services instead of in-person services because it is easier for both customers and organizations. Making a web application available to everyone makes it more vulnerable. One of those vulnerabilities is SQL (Structured Query Language) injection. SQL injection is a technique where attackers inject malicious code through user inputs or URLs and gain access to the database. Through this attack, hackers can destroy or change the data present in the database. This paper focuses on how to prevent the SQL injection attacks using five cryptographic algorithms (AES, Triple DES, RSA, Blowfish, and Twofish). Finally, the research evaluates which cryptographic algorithm is most appropriate to prevent SQLIA in web applications.

Recommended Citation

Karunanithi, Jayakrishnan S., "SQL Injection Prevention Technique Using Cryptography" (2018). Culminating Projects in Information Assurance. 74.
https://repository.stcloudstate.edu/msia_etds/74