{"id":"https://openalex.org/W2149232727","doi":"https://doi.org/10.1145/1529282.1529737","title":"SQLProb","display_name":"SQLProb","publication_year":2009,"publication_date":"2009-03-08","ids":{"openalex":"https://openalex.org/W2149232727","doi":"https://doi.org/10.1145/1529282.1529737","mag":"2149232727"},"language":"en","primary_location":{"id":"doi:10.1145/1529282.1529737","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1529282.1529737","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2009 ACM symposium on Applied Computing","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5102983664","display_name":"Anyi Liu","orcid":"https://orcid.org/0000-0002-6011-1998"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Anyi Liu","raw_affiliation_strings":["George Mason University"],"affiliations":[{"raw_affiliation_string":"George Mason University","institution_ids":["https://openalex.org/I162714631"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5013435172","display_name":"Yi Yuan","orcid":"https://orcid.org/0009-0000-8581-5732"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yi Yuan","raw_affiliation_strings":["George Mason University"],"affiliations":[{"raw_affiliation_string":"George Mason University","institution_ids":["https://openalex.org/I162714631"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5071866219","display_name":"Duminda Wijesekera","orcid":"https://orcid.org/0000-0002-7122-3055"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Duminda Wijesekera","raw_affiliation_strings":["George Mason University"],"affiliations":[{"raw_affiliation_string":"George Mason University","institution_ids":["https://openalex.org/I162714631"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5041500780","display_name":"Angelos Stavrou","orcid":"https://orcid.org/0000-0001-9888-0592"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Angelos Stavrou","raw_affiliation_strings":["George Mason University"],"affiliations":[{"raw_affiliation_string":"George Mason University","institution_ids":["https://openalex.org/I162714631"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5102983664"],"corresponding_institution_ids":["https://openalex.org/I162714631"],"apc_list":null,"apc_paid":null,"fwci":13.3254,"has_fulltext":false,"cited_by_count":93,"citation_normalized_percentile":{"value":0.98570444,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"2054","last_page":"2061"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9824000000953674,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8621300458908081},{"id":"https://openalex.org/keywords/sql-injection","display_name":"SQL injection","score":0.8357003927230835},{"id":"https://openalex.org/keywords/sql","display_name":"SQL","score":0.6482454538345337},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.6145905256271362},{"id":"https://openalex.org/keywords/data-transformation-services","display_name":"Data Transformation Services","score":0.6045343279838562},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.5566834211349487},{"id":"https://openalex.org/keywords/web-server","display_name":"Web server","score":0.4552655518054962},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.43808290362358093},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.42251861095428467},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.4166800379753113},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3143865466117859},{"id":"https://openalex.org/keywords/query-by-example","display_name":"Query by Example","score":0.2704053521156311},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.20192787051200867},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.17562147974967957},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.12778139114379883},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.11213144659996033},{"id":"https://openalex.org/keywords/search-engine","display_name":"Search engine","score":0.07949283719062805}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8621300458908081},{"id":"https://openalex.org/C150451098","wikidata":"https://www.wikidata.org/wiki/Q506059","display_name":"SQL injection","level":5,"score":0.8357003927230835},{"id":"https://openalex.org/C510870499","wikidata":"https://www.wikidata.org/wiki/Q47607","display_name":"SQL","level":2,"score":0.6482454538345337},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.6145905256271362},{"id":"https://openalex.org/C141589383","wikidata":"https://www.wikidata.org/wiki/Q644775","display_name":"Data Transformation Services","level":5,"score":0.6045343279838562},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.5566834211349487},{"id":"https://openalex.org/C11392498","wikidata":"https://www.wikidata.org/wiki/Q11288","display_name":"Web server","level":3,"score":0.4552655518054962},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.43808290362358093},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.42251861095428467},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.4166800379753113},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3143865466117859},{"id":"https://openalex.org/C194222762","wikidata":"https://www.wikidata.org/wiki/Q114486","display_name":"Query by Example","level":4,"score":0.2704053521156311},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.20192787051200867},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.17562147974967957},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.12778139114379883},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.11213144659996033},{"id":"https://openalex.org/C97854310","wikidata":"https://www.wikidata.org/wiki/Q19541","display_name":"Search engine","level":2,"score":0.07949283719062805},{"id":"https://openalex.org/C164120249","wikidata":"https://www.wikidata.org/wiki/Q995982","display_name":"Web search query","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1529282.1529737","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1529282.1529737","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2009 ACM symposium on Applied Computing","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":33,"referenced_works":["https://openalex.org/W23242426","https://openalex.org/W109951691","https://openalex.org/W1497959280","https://openalex.org/W1505465226","https://openalex.org/W1511560695","https://openalex.org/W1582331515","https://openalex.org/W1583044117","https://openalex.org/W1598083179","https://openalex.org/W1648477960","https://openalex.org/W1658853941","https://openalex.org/W1974316340","https://openalex.org/W1975428729","https://openalex.org/W1983142587","https://openalex.org/W1997389706","https://openalex.org/W2001693166","https://openalex.org/W2006591097","https://openalex.org/W2008857097","https://openalex.org/W2032852944","https://openalex.org/W2090697721","https://openalex.org/W2107406536","https://openalex.org/W2116669952","https://openalex.org/W2121212221","https://openalex.org/W2134429122","https://openalex.org/W2140506847","https://openalex.org/W2144696387","https://openalex.org/W2147478478","https://openalex.org/W2147906352","https://openalex.org/W2158047578","https://openalex.org/W2914982603","https://openalex.org/W3201171674","https://openalex.org/W3214380909","https://openalex.org/W4245668478","https://openalex.org/W4285719527"],"related_works":["https://openalex.org/W3107810407","https://openalex.org/W2571113418","https://openalex.org/W2359391484","https://openalex.org/W4206678297","https://openalex.org/W3196457791","https://openalex.org/W2133089983","https://openalex.org/W3202423697","https://openalex.org/W4385682279","https://openalex.org/W4372049114","https://openalex.org/W2552970179"],"abstract_inverted_index":{"SQL":[0,8,30,52,122,133],"injection":[1,134],"attacks":[2,135],"(SQLIAs)":[3],"consist":[4],"of":[5,40,108,115],"maliciously":[6],"crafted":[7],"inputs,":[9],"including":[10],"control":[11,53],"code,":[12],"used":[13],"against":[14],"Database-connected":[15],"Web":[16],"applications.":[17],"To":[18,100],"curtail":[19],"the":[20,36,70,72,75,102,105],"attackers'":[21],"ability":[22],"to":[23,43,56,93],"generate":[24],"such":[25],"attacks,":[26],"we":[27,111,118,129],"propose":[28],"an":[29],"Proxy-based":[31],"Blocker":[32],"(SQLProb).":[33],"SQLProb":[34,116],"harnesses":[35],"effectiveness":[37],"and":[38,46,97,104],"adaptivity":[39],"genetic":[41],"algorithms":[42],"dynamically":[44],"detect":[45,131],"extract":[47],"users'":[48],"inputs":[49],"for":[50],"undesirable":[51],"sequences.":[54],"Compared":[55],"state-of-the-art":[57],"protection":[58,92],"mechanisms,":[59],"our":[60,79,109],"method":[61],"does":[62],"not":[63],"require":[64],"any":[65],"code":[66],"changes":[67],"on":[68],"either":[69],"client,":[71],"web-server":[73],"or":[74],"back-end":[76,98],"database.":[77],"Rather,":[78],"system":[80],"uses":[81],"a":[82,113],"proxy":[83],"that":[84,128],"seamlessly":[85],"integrates":[86],"with":[87],"existing":[88],"operational":[89],"environments":[90],"offering":[91],"front-end":[94],"web":[95],"servers":[96],"databases.":[99],"evaluate":[101],"overhead":[103],"detection":[106],"performance":[107],"system,":[110],"implemented":[112],"prototype":[114],"which":[117],"tested":[119],"using":[120],"real":[121],"attacks.":[123],"Our":[124],"experimental":[125],"results":[126],"show":[127],"can":[130],"all":[132],"while":[136],"maintaining":[137],"very":[138],"low":[139],"resource":[140],"utilization.":[141]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":3},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":6},{"year":2019,"cited_by_count":6},{"year":2018,"cited_by_count":3},{"year":2017,"cited_by_count":10},{"year":2016,"cited_by_count":13},{"year":2015,"cited_by_count":8},{"year":2014,"cited_by_count":6},{"year":2013,"cited_by_count":8},{"year":2012,"cited_by_count":8}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2016-06-24T00:00:00"}