| 基于LINQ架构防范SQL注入攻击的公共自行车交通系统 |
| |
| 引用本文: | 黄志耀,徐海涛.基于LINQ架构防范SQL注入攻击的公共自行车交通系统[J].城市公共交通,2011(11):53-56. |
| |
| 作者姓名: | 黄志耀 徐海涛 |
| |
| 作者单位: | 1. 杭州公共交通集团有限公司 杭州 310004
2. 杭州电子科技大学 杭州 310018 |
| |
| 摘 要: | SQL注入是一种常用且易于实施的攻击手段,对网络应用程序的安全构成严重威胁.本文在公共自行车交通系统中提出了一种基于LINQ防范SQL注入攻击的多层体系结构.该体系使用LINQ语法代替传统的SQL语句来查询和处理数据库中的数据,在运行时,LINQ中的组件会将集成在代码中的查询转换成SQL,并在数据库系统上执行,完全转移...
|
| 关 键 词: | LINQ SQL注入 网络攻击 公共自行车 |
Public Bicycle Transport System based on LINQ to Defend against SQL Injection Attacks |
| |
| Huang Zhiyao,Xu Haitao.Public Bicycle Transport System based on LINQ to Defend against SQL Injection Attacks[J].Urban Public Transport,2011(11):53-56. |
| |
| Authors: | Huang Zhiyao Xu Haitao |
| |
| Institution: | 1.Hangzhou Public Transport Corporation, Hangzhou 310004; 2.Hangzhou Dianzi University, Hangzhou 310018 Huang ZhiyaoI Xu Haitao2 |
| |
| Abstract: | SQL injection is a common and easily-implemented attacking means which poses a serious menace to the security of network applications. This paper presents a LINQ-based multi-tier architecture to prevent SQL injection attacks in the public bicycle transport system. This architecture replaces the traditional use of SQL with LINQ syntax to query and process data in database. At the runtime, components of LINQ will transform the query integrated in code into SQL sentence, and execute the SQL sentence in database. This makes a complete transfer of the interaction mode between Database and SQL and improves the application security. |
| |
| Keywords: | EINQ SQL Injection Network Attack Public Bicycle |
| 本文献已被 维普 万方数据 等数据库收录! |
