SQLMVED: SQL injection runtime prevention system based on multi-variant execution

SQLMVED: SQL injection runtime prevention system based on multi-variant execution

The effectiveness of combining SQL statement parsing with randomization to defend against SQL injection attack (SQLIA) was based on the fact that attackers did not know about the current method of randomization adopted by system.Therefore, once attackers had mastered the current method of randomizat...

Full description

Saved in:

Bibliographic Details
Main Authors:	Bolin MA, Zheng ZHANG, Hao LIU, Jiangxing WU
Format:	Article
Language:	zho
Published:	Editorial Department of Journal on Communications 2021-04-01
Series:	Tongxin xuebao
Subjects:	SQL injection attack runtime prevention multi-variant execution randomization
Online Access:	http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2021046/
Tags:	Add Tag No Tags, Be the first to tag this record!

Similar Items

Research on the SQL injection filtering based on SQL syntax tree
by: Chen-wang HAN, et al.
Published: (2016-11-01)

Penetration test method using blind SQL injection based on second-order fragment and reassembly
by: De-guang LE, et al.
Published: (2017-10-01)

Approach to detecting SQL injection behaviors in network environment
by: Yu-fei ZHAO, et al.
Published: (2016-02-01)

Qualitative modeling and analysis of attack surface for process multi-variant execution software system
by: Fukang XING, et al.
Published: (2022-10-01)

Runtime verification approach for DoS attack detection in edge servers
by: Bin YU, et al.
Published: (2021-09-01)

SQL Injection Detection Based on Lightweight Multi-Head Self-Attention
by: Rui-Teng Lo, et al.
Published: (2025-01-01)

Approach on runtime monitoring based on the embedded trusted platforms
by: Zhao-chang SUN, et al.
Published: (2017-10-01)

SOLUTIONS FOR AUTO-TESTING AND AUTO-WARNING WEBSITE ERRORS BASED ON THE RESULTS OF THE WEBSITE ERROR SCANNING TOOLS
by: Phạm Duy Lộc, et al.
Published: (2016-06-01)

Performance Evaluation of NewSQL Databases in a Distributed Architecture
by: Zhiyao Zhang, et al.
Published: (2025-01-01)

Research on the HTML5 Application Runtime Environment for Mobile Terminal
by: Gang Lu, et al.
Published: (2013-05-01)

LotusSQL: SQL Engine for High-Performance Big Data Systems
by: Xiaohan Li, et al.
Published: (2021-12-01)

Network log analysis with SQL-on-Hadoop
by: Si-yu ZHANG, et al.
Published: (2014-10-01)

FI-NL2PY2SQL: Financial Industry NL2SQL Innovation Model Based on Python and Large Language Model
by: Xiaozheng Du, et al.
Published: (2025-01-01)

Workflow execution mechanism in grid workflow generation
by: ZHANG Shao-hua, et al.
Published: (2008-01-01)

CHOOSING THE APPROPRIATE DATABASE TYPE: A COMPARISON OF SQL, NOSQL, AND NEWSQL
by: BABUCEA ANA-GABRIELA
Published: (2024-12-01)

Impacts of data consistency levels in cloud-based NoSQL for data-intensive applications
by: Saulo Ferreira, et al.
Published: (2024-11-01)

GenSQLi: A Generative Artificial Intelligence Framework for Automatically Securing Web Application Firewalls Against Structured Query Language Injection Attacks
by: Vahid Babaey, et al.
Published: (2024-12-01)

Models and scenarios of implementation of threats for internet resources
by: S. A. Lesko
Published: (2020-12-01)

Security capability analysis of software-based heterogeneous redundant execution system
by: Bolin MA, et al.
Published: (2021-09-01)

WEB VULNERABILITIES DETECTION USING A HYBRID MODEL OF CNN, GRU AND ATTENTION MECHANISM
by: Sarbast H. Ali, et al.
Published: (2025-01-01)

SE-HCL: Schema Enhanced Hybrid Curriculum Learning for Multi-Turn Text-to-SQL
by: Yiyun Zhang, et al.
Published: (2024-01-01)

PSR-SQUARES: SQL reverse synthesis system based on program space reducer
by: Quansheng DOU, et al.
Published: (2023-11-01)

Discovery and research of network security vulnerabilities based on Web application
by: Xiao-shuang ZHANG, et al.
Published: (2016-06-01)

Performance analysis of selected database management systems
by: Radosław Kowalczyk, et al.
Published: (2024-09-01)

Design and implementation of hardware-based dynamic instruction set randomization framework
by: San DU, et al.
Published: (2017-11-01)

Fault-injection attack on countermeasure algorithms of RSA-CRT cryptosystem
by: Fanyu KONG, et al.
Published: (2019-02-01)

Microsoft SQL server 2008 administration for Oracle DBAs /
by: Anderson, Mark
Published: (2011)

Improving The Performance of Big Data Databases
by: Nzar Abdulqadir Ali, et al.
Published: (2019-12-01)

Impossibility of the forced execution on real estate of Public Enterprises and for-profit corporations established by the Republic of Serbia
by: MItrović Igor
Published: (2019-01-01)

Вразливості SQL-injection
by: Світлана Клименко, et al.
Published: (2023-06-01)

Interrelationships Between Personality, Executive Function and Physical Activity
by: Chelsea Joyner, et al.
Published: (2017-08-01)

Exploit detection based on illegal control flow transfers identification
by: Ming-hua WANG, et al.
Published: (2014-09-01)

Features of the initial stage of digitalization of the executive authority of Ukraine: historical and legal overview
by: E. Najafli
Published: (2023-07-01)

Working Memory and Executive Functions: Theoretical Advances
by: Sergio Morra, et al.
Published: (2025-01-01)

The Clock Drawing Task reveals executive dysfunction in the dialysis population – an underrecognized and underestimated problem
by: Piotr Olejnik, et al.
Published: (2024-12-01)

Pesticide Injection and Drenching
by: Frederick Fishel, et al.
Published: (2022-05-01)

Research on Java card security
by: Xue-lian ZHANG, et al.
Published: (2017-06-01)

‘No, I do not suffer from it’: the analysis of the manipulation of the subjectivity of the executive woman in the rise of the career
by: Elem Rabelo Duarte, et al.
Published: (2022-01-01)

Pesticide Injection and Drenching
by: Frederick M. Fishel
Published: (2018-01-01)

Pesticide Injection and Drenching
by: Frederick M. Fishel
Published: (2018-01-01)