Prevention of SQL Injection Attacks using RC4 and Blowfish Encryption Techniques

Prevention of SQL Injection Attacks using RC4 and Blowfish Encryption Techniques
Authors : Sonakshi, Rakesh Kumar, Girdhar Gopal
Publication Date: 31-05-2016


Author(s):  Sonakshi, Rakesh Kumar, Girdhar Gopal

Published in:   International Journal of Engineering Research & Technology

License:  This work is licensed under a Creative Commons Attribution 4.0 International License.

Website: www.ijert.org

Volume/Issue:   Volume. 5 - Issue. 06 , June - 2016

e-ISSN:   2278-0181

 DOI:  http://dx.doi.org/10.17577/IJERTV5IS060092


SQL Injection Attacks (SQLIAs) are emerged nowadays as one of the most serious threats to the security of database-driven web applications. SQL injection attacks are one of the most critical vulnerabilities in web applications that software developers must address. The vulnerabilities can be harmful because they allow an attacker to access the database underlying an application. Using SQLIAs, an attacker may able to read, modify, or even delete database information. In many cases, this information is sensitive and its loss can lead to problems such as identity theft and fraud. In this paper, the problem of SQL injection attack is addressed using three different prevention mechanisms. The first technique allows single word inputs only by matching malicious symbols with the list maintained which can prevent almost all types of SQLIAs. The second one is the well-known parameterized query used to handle these types of attacks & the last technique makes use of RC4 and blowfish encryption mechanism instead of AES which will drastically improve the performance by encrypting the confidential fields in much less time as compared to AES encryption method.


Number of Citations for this article:  Data not Available


Key Word(s):    


Number of Downloads:     203

Call for Papers - May - 2017



                 Call for Thesis - 2017 

     Publish your Ph.D/Master's Thesis Online

              Publish Ph.D Master Thesis Online as Book