NoSQL Racket: A Testing Tool for Detecting NoSQL Injection Attacks in Web Applications
نویسندگان
چکیده
منابع مشابه
A Parse Tree-Based NoSQL Injection Attacks Detection Mechanism
Nowadays, many IT giants such as Facebook, Google, and Amazon adopt non-relational database (NoSQL, Not only SQL) technologies to manage their systems. Although these kind of database technologies have made outstanding contributions to the development of the IT industry, it also exposed some security risks such as SQL injection attacks. Up to now, there are many solutions to counter SQL injecti...
متن کاملNo SQL, No Injection? Examining NoSQL Security
NoSQL data storage systems have become very popular due to their scalability and ease of use. This paper examines the maturity of security measures for NoSQL databases, addressing their new query and access mechanisms. For example the emergence of new query formats makes the old SQL injection techniques irrelevant, but are NoSQL databases immune to injection in general? The answer is NO. Here w...
متن کاملNoSQL Databases
In this document, I present the main notions of NoSQL databases and compare four selected products (Riak, MongoDB, Cassandra, Neo4J) according to their capabilities with respect to consistency, availability, and partition tolerance, as well as performance. I also propose a few criteria for selecting the right tool for the right situation.
متن کاملSchemaless NoSQL Data Stores - Object-NoSQL Mappers to the Rescue?
NoSQL data stores are becoming increasingly popular in application development. These systems are attractive for developers due to their ability to handle large volumes of data, as well as data with a high degree of structural variety. Typically, NoSQL data stores are accessed programmatically. Due to the imminent lack of standardized query languages, building applications against the native in...
متن کاملData Consistency Simulation Tool for NoSQL Database Systems
...............................................................................................................................................3
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Advanced Computer Science and Applications
سال: 2017
ISSN: 2156-5570,2158-107X
DOI: 10.14569/ijacsa.2017.081178