Publications of the Laboratory for Education and Research in Secure Systems Engineering (LERSSE)

↧

Creation and Evaluation of SQL Injection Security Tools

April 27, 2009, 1:07 pm

This work summarizes our research on the topic of the creation and evaluation of security tools against SQL injection attacks (SQLIAs). We introduce brieﬂy the key concepts and problems of information...

View Article

SQLPrevent: Effective Dynamic Protection Against SQL Injection Attacks

April 27, 2009, 1:08 pm

This paper presents an approach for retrofitting existing web applications with run-time protection against known as well as unseen SQL injection attacks (SQLIAs). This approach (1) is resistant to...

View Article

Retrofitting Existing Web Applications with Effective Dynamic Protection...

July 2, 2009, 3:23 pm

This paper presents an approach for retrofitting existing web applications with run-time protection against known as well as unseen SQL injection attacks (SQLIAs) without the involvement of application...

View Article

Systematically breaking and fixing OpenID security: Formal analysis,...

March 11, 2012, 11:21 am

OpenID 2.0 is a user-centric Web single sign-on protocol with over one billion OpenID-enabled user accounts, and tens of thousands of supporting websites. While the security of the protocol is clearly...

View Article

More Pages to Explore .....