SQL Injection Prevention Technique using Encryption
Security of a vulnerable database of an application is exploited by a technique known as SQL injection.The target
of the SQL injection attacks are those databases that are accessible through a web front-end and takes the advantage of poor
input validation in code and administration. The consequences of this attack are ruthless. This paper focuses on how the
MD5 and AES can be used to prevent SQL injection attacks in web based application. SQL injection can be used to get
unauthorized access to the database. For accessing a database an attacker will require the entire table name to access the
database. So to prevent this attack a solution is proposed using double encryption technique. The algorithm used gives better
performance and security in comparison to the existing solution. The main aim is to provide a technique which provides high
security to the database of the web application.
Index terms - SQL injection, vulnerability, web security, MD5, AES.