Presentation is loading. Please wait.

Presentation is loading. Please wait.

Theodore Lawson CSCE548 Student Presentation, Topic #2

Published byDwain Cannon Modified over 6 years ago

Similar presentations

Presentation on theme: "Theodore Lawson CSCE548 Student Presentation, Topic #2"— Presentation transcript:

1 Theodore Lawson CSCE548 Student Presentation, Topic #2
CWE-89 SQL Injection Theodore Lawson CSCE548 Student Presentation, Topic #2

2 Technical Overview Software constructs part of SQL commands from user-controllable inputs Software does not clean up elements from user that could end up modifying components downstream User inputs may alter logic to bypass security checkpoints, or insert statements that modify the back end database

3 Technical Overview Weakness Prevalence
High SQL makes no distinction between the control and data planes. Mitigation Cost Low proper architecture and design. Attack Frequency high flaw is very easy to detect and exploit.

4 Technical Overview Consequences Data Loss Security Bypass
Ease of Detection Automated Static Analysis Manual Analysis Attacker Awareness High Common flaw in data-rich applications

5 Examples Code intends to execute:
SELECT * FROM items WHERE owner = <userName> AND itemname = <itemName>; If the attacker with the username Ted enters the string: name' OR 'a'='a Query becomes SELECT * FROM items WHERE owner = ‘ted' AND itemname = 'name' OR 'a'='a'; Which always evaluates true, and essentially becomes SELECT * FROM items;

6 Examples Confidentiality Loss of sensitive data Authentication
Access account of other users Authorization Improper changing of information Integrity Delete information

7 Detection Methods Automated Static Analysis Advantages False Positives
False Negatives Manual Analysis Disadvantages

8 Avoidance of Error Using proper languages, libraries, and frameworks
Hibernate Enterprise Java Beans Separation between data and code Principle of Least Privilege

9 Conclusion Importance Easily exploited Easily avoided Relevance
Potential damage Attacker awareness What we can do Be aware Use tools to detect

10 References 2011 CWE/SANS Top 25 Most Dangerous Software Errors
Improper Sanitization of Special Elements used in an SQL Command ('SQL Injection’) SQL Injection Examples

Download ppt "Theodore Lawson CSCE548 Student Presentation, Topic #2"

Similar presentations

Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.

Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
Understand Database Security Concepts

Understand Database Security Concepts
Sania: Syntactic and Semantic Analysis for Automated Testing against SQL Injection Yuji Kosuga, Kenji Kono, Miyuki Hanaoka Keio University Miho Hishiyama,

Sania: Syntactic and Semantic Analysis for Automated Testing against SQL Injection Yuji Kosuga, Kenji Kono, Miyuki Hanaoka Keio University Miho Hishiyama,
By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.

By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Database Connectivity Rose-Hulman Institute of Technology Curt Clifton.

Database Connectivity Rose-Hulman Institute of Technology Curt Clifton.
1 RAKSHA: A FLEXIBLE ARCHITECTURE FOR SOFTWARE SECURITY Computer Systems Laboratory Stanford University Hari Kannan, Michael Dalton, Christos Kozyrakis.

1 RAKSHA: A FLEXIBLE ARCHITECTURE FOR SOFTWARE SECURITY Computer Systems Laboratory Stanford University Hari Kannan, Michael Dalton, Christos Kozyrakis.
SQL-Injection attacks Damir Lizdek & Dan Rundlöf Language-based security.

SQL-Injection attacks Damir Lizdek & Dan Rundlöf Language-based security.
Injection Attacks by Example SQL Injection and XSS Adam Forsythe Thomas Hollingsworth.

Injection Attacks by Example SQL Injection and XSS Adam Forsythe Thomas Hollingsworth.
{ Code Injection Cable Johnson.  Overview  Common Injection Types  Developer Prevention Code Injection.

{ Code Injection Cable Johnson.  Overview  Common Injection Types  Developer Prevention Code Injection.
Secure Software Development Mini Zeng University of Alabama in Huntsville 1.

Secure Software Development Mini Zeng University of Alabama in Huntsville 1.
SQL INJECTION COUNTERMEASURES &

SQL INJECTION COUNTERMEASURES &
Hamdi Yesilyurt, MA Student in MSDF & PhD-Public Affaris SQL Riji Jacob MS Student in Computer Science.

Hamdi Yesilyurt, MA Student in MSDF & PhD-Public Affaris SQL Riji Jacob MS Student in Computer Science.
CSCI 6962: Server-side Design and Programming Secure Web Programming.

CSCI 6962: Server-side Design and Programming Secure Web Programming.
Approaches to Application Security – DSM

Approaches to Application Security – DSM
Lecture slides prepared for “Computer Security: Principles and Practice”, 3/e, by William Stallings and Lawrie Brown, Chapter 5 “Database and Cloud Security”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 3/e, by William Stallings and Lawrie Brown, Chapter 5 “Database and Cloud Security”.
The Protection of Information in Computer Systems Part I. Basic Principles of Information Protection Jerome Saltzer & Michael Schroeder Presented by Bert.

The Protection of Information in Computer Systems Part I. Basic Principles of Information Protection Jerome Saltzer & Michael Schroeder Presented by Bert.
Attacking Applications: SQL Injection & Buffer Overflows.

Attacking Applications: SQL Injection & Buffer Overflows.
Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.

Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.

Similar presentations

Ads by Google