SQL Injection Detection and Prevention Techniques in ASP.NET Web Application
Mohammad Abu Kausar1, Mohammad Nasar2, Aiman Moyaid3

1Mohammad Abu Kausar, Department of Information Systems, University of Nizwa, Nizwa, Sultanate of Oman.
2Mohammad Nasar, Department of Computing and Informatics, Mazoon College, Muscat, Sultanate of Oman.
3Aiman Moyaid, Department of Information Systems, University of Nizwa, Nizwa, Sultanate of Oman.

Manuscript received on 13 August 2019. | Revised Manuscript received on 19 August 2019. | Manuscript published on 30 September 2019. | PP: 7759-7766 | Volume-8 Issue-3 September 2019 | Retrieval Number: C6319098319/2019©BEIESP | DOI: 10.35940/ijrte.C6319.098319

Open Access | Ethics and Policies | Cite | Mendeley | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)

Abstract: Injection in SQL (structure query language) is one of the threats to web-based apps, mobile apps and even desktop applications associated to the database. An effective SQL Injection Attacks (SQLIA) could have severe implications for the victimized organization including economic loss, loss of reputation, enforcement and infringement of regulations. Systems which do not validate the input of the user correctly make them susceptible to SQL injection. SQLIA happens once an attacker can incorporate a sequence of harmful SQL commands into a request by changing back-end database through user information. To use this sort of attacks may readily hack applications and grab the private information by the attacker. In this article we introduce deferential sort of process to safeguard against current SQLIA method and instruments that are used in ASP.NET apps to detect or stop these attacks.
Index Terms: SQL Injection, Cybercrime, SQLIA, Vulnerabilities, ASP.NET web Application, Web Application Security.

Scope of the Article:
Computational Techniques in Civil Engineering