uu.seUppsala University Publications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
SQL-Injections: A wake-up call for developer: A study about a major threat and issue for companies and organizations worldwide
Uppsala University, Disciplinary Domain of Humanities and Social Sciences, Faculty of Social Sciences, Department of Informatics and Media, Information Systems.
Uppsala University, Disciplinary Domain of Humanities and Social Sciences, Faculty of Social Sciences, Department of Informatics and Media, Information Systems.
2013 (English)Independent thesis Basic level (degree of Bachelor), 10 credits / 15 HE creditsStudent thesisAlternative title
SQL-Injektioner: En tankeställare för utvecklare : En studie om ett stort hot och problem för företag och organisationer världen över (Swedish)
Abstract [en]

Injection attack is the most critical website security risk, and SQL-injection attack is the most reported injection attack on websites. This thesis strives to find an answer of why SQL-injections still remain as one of the most common website vulnerabilities. A questionnaire was conducted where companies and organizations answered several questions about their awareness, experience and knowledge of SQL-injections. After statistical analysis, results was found that indicate that there are many reasons behind SQL-injection vulnerabilities, for example many companies and organizations begins to sanitize input data after the attack, and others don’t know what SQL-injection is. This thesis will also contribute to the general awareness of SQL-injections; a wake-up call for developers, professors, researchers and students that are designing and programming databases and websites.

Place, publisher, year, edition, pages
2013. , 36 p.
Keyword [en]
SQL-Injection, SQL-Injection attack, SQL, IT-Security, IS-Security, Database, Database Management System, Website, Information security
Keyword [sv]
SQL-injektion, SQL-injektions attack, SQL, IT-säkerhet, IS-säkerhet, Databas, Databashanteringssystem, Hemsida, Informationssäkerhet
National Category
Information Systems, Social aspects
Identifiers
URN: urn:nbn:se:uu:diva-202104OAI: oai:DiVA.org:uu-202104DiVA: diva2:630946
Subject / course
Computer Systems Sciences
Educational program
Bachelor programme in Information Systems
Presentation
2013-05-28, Ekonomikum, Kyrkogårdsgatan 10 753 13, Uppsala, 20:46 (Swedish)
Supervisors
Examiners
Available from: 2013-06-24 Created: 2013-06-19 Last updated: 2013-06-24Bibliographically approved

Open Access in DiVA

SQL-Injections: A wake-up call for developers(1145 kB)1333 downloads
File information
File name FULLTEXT01.pdfFile size 1145 kBChecksum SHA-512
cca235a9dd052f5ec05a9db3cba8267aa00729938d3eacf62d16792f7e6d517e914c00142c921ee0d3810bbbf359cc272032f79fd03c31e8e6654dadf2383554
Type fulltextMimetype application/pdf

By organisation
Information Systems
Information Systems, Social aspects

Search outside of DiVA

GoogleGoogle Scholar
Total: 1333 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 799 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf