Home // AICT 2019, The Fifteenth Advanced International Conference on Telecommunications // View article

Security Methods Implementation and Quality of Experience (QoE) for Web Applications Performance

Authors:
Ustijana Rechkoska-Shikoska

Keywords: web application; SQL Injection; cyber security; defense; database security

Abstract:
Web apps have a big impact in most of our activities nowadays. Unfortunately, they are also a target for illegal actions. When attacking web apps the hacker will try several means of compromising the applications paying special attention to the database driven web apps. The SQL Injection Attacks (SQLIAs) are one of the most common methods of data theft on web apps. SQLIA is a hacking technique that attackers use to compromise the database in most of web apps, by manipulating SQL queries to change its behavior. Concomitantly, the attackers get full access harvesting sensitive information and take control over the application for their personal benefit. The aim of this work was to acknowledge multiple security methods, such as parameterized statements, parameterized stored procedures, customized error messages and input validation type as efficient means for preventing SQLIA simulated on an online-based database application MoviesBox. The successful prevention of the attack was confirmed through conducting a series of performance tests after the injection of malicious codes and QoE methods implementation

Pages: 122 to 129

Copyright: Copyright (c) IARIA, 2019

Publication date: July 28, 2019

Published in: conference

ISSN: 2308-4030

ISBN: 978-1-61208-727-6

Location: Nice, France

Dates: from July 28, 2019 to August 2, 2019