Effective Detection of SQL/XPath Injection Vulnerabilities in Web Services.
Nuno AntunesNuno LaranjeiroMarco VieiraHenrique MadeiraPublished in: IEEE SCC (2009)
Keyphrases
- web services
- query language
- data model and query language
- database
- detection algorithm
- object detection
- relational databases
- security flaws
- xml processing
- information security
- sql queries
- database management
- business processes
- business process
- database design
- query evaluation
- sql server
- data model
- database technology
- service oriented
- false positives
- relational model
- database applications
- web service composition
- transitive closure
- xml documents
- web applications