New Mechanism to Confront Injection Attacks
Computer as a functional and effective tool for changing and improving human life, concerns with variety of knowledge areas and techniques. These knowledge areas comprise both technical and managerial tools and skills. Moreover, developing a computer application using human resource and other technical resources drastically require fund and expense. In this case, making an appropriate and reliable infrastructure for developing software products is critical to assure IT projects success. This article concentrates on variant aspects of XML security environment and its related security attacks namely DoS and XML injection. Both of them are of the most abused techniques by hackers to disrupt web services data hoarding, to influence on web servers and to penetrate into the servers as a legal user. Then, it will offer a new method to prevent XML injection attacks by adding a new component to the software systems for changing the data section of the XML data code characters in such a way that it will become more secure in face of XML injection attacks.
XML: Extensible Markup Language XHTML:extensible Hypertext Markup Language HTTP: Hyper Text Transfer Protocol SMTP: Simple Mail Transfer Protocol DTD:Document Type Definition, XML Schema XML injection DoS:Denial of service SOAP: Simple Object Access Proto
Hossein Dolatabadi Mahdi Negahi Shirazi Maryamsadat Hejazi
Faculty of Information Technology Multimedia University Kualalumpur, Malaysia
国际会议
2011 International Conference on Information and Computer Networks(ICICN 2011)(2011年信息与计算机网络国际会议)
贵阳
英文
112-115
2011-01-26(万方平台首次上网日期,不代表论文的发表时间)