PHP框架中SQL注入双层防御模型的研究与设计
首发时间:2017-09-05
摘要:SQL注入攻击是目前最普遍、危害最大的Web攻击技术,对其防御方法的研究已经成为信息安全领域内的研究热点之一。本文首先介绍了SQL注入技术的种类,然后介绍了常用的SQL注入防御方法,并提出了应用于PHP Web应用程序的SQL注入双层防御模型。通过对用户输入的过滤和对敏感数据的加密,该模型能够高效、精准地抵御常见的注入攻击。最后,通过实验证明了该模型的有效性。
关键词: 信息安全 SQL注入攻击 SQL注入防御模型 PHP框架
For information in English, please click here
Research and design of the SQL injection double layer defense model in PHP framework
Abstract:SQL injection attack is the most common and most harmful Web attack technology, and the research of its defense methods has become one of the hotspots in the field of information security. This paper first introduces the types of SQL injection technology, and then introduces the commonly used SQL injection defense methods, and proposes a SQL injection double defense model for PHP Web applications. By filtering the user\'s input and encrypting the sensitive data, the model can efficiently and accurately resist common injection attacks. Finally, the validity of the model is proved by experiments.
Keywords: Information security SQL injection attack SQL injection defense model PHP framework
基金:
论文图表:
引用
No.4740898121400115****
同行评议
共计0人参与
勘误表
PHP框架中SQL注入双层防御模型的研究与设计
评论
全部评论0/1000