With the increasing importance of the internet in our day-to-day life, data security in web application has become very crucial. Ever increasing online and real time transaction services have led to manifold rise in the problems associated with the database security. Attacker uses illegal and unauthorized approaches to hijack the confidential information like username, password and other vital ...

Structured Query Language (SQL) is used to obtain data from relational databases. Fuzzy improvement of SQL queries has advantages in cases when the user cannot unambiguously define selection criteria or when the user wants to examine data that almost meet the given criteria. In this paper we examine a realisation of the fuzzy querying concept. For this purposes the fuzzy generalized logical con...

The main aim of this paper was to develop and evaluate securely web-based application for construction material testing using object-oriented technology and parameterized queries for SQL command queries. The SQL queries for the web application of construction material testing were modified by adjusting their codes which included connection strings, authorization bypass and execute commands. Det...

Sql injection are one of the topmost threats for application written for the Web. In sql injection attacker gains an unauthorized access to the DB and some malicious codes are injected into it. This paper deals with web security as well as security techniques. To better counter these attack various techniques for detection and and prevention of SQL injection attack are identified in this paper ...

SQL Injection attacks and Cross-Site Scripting attacks are the two most common attacks on web application. Proposed method is a new policy based Proxy Agent, which classifies the request as a scripted request, or query based request, and then, detects the respective type of attack, if any in the request. This method detects both SQL injection attack as well as the Cross-Site Scripting attacks. ...

Migrating applications from conventional to temporal database management technology has received scant mention in the research literature. This paper formally defines three increasingly restrictive notions of upward compatibility which capture properties of a temporal SQL with respect to conventional SQL that, when satisfied, provide for a smooth migration of legacy applications to a temporal s...

Benchmarks are important tools to evaluate systems, as long as their results are transparent, reproducible and they are conducted with due diligence. Today, many SQL-on-Hadoop vendors use the data generators and the queries of existing TPC benchmarks, but fail to adhere to the rules, producing results that are not transparent. As the SQL-on-Hadoop movement continues to gain more traction, it is...

This paper introduces SQL+i, a temporal relational database management system (TRDBMS) whose aim is to incorporate both determinate, indeterminate, and relative temporal facts which may be declared at multiple and even mixed levels of granularity in a uniform, natural, and unambiguous manner. We use the SQL query language as the basis for the SQL+i query language, utilising a temporal algebra w...

IIS*Case is an integrated CASE tool that supports the automation and intelligent support of complex and highly formalized design and programming tasks in the development of an information system. IIS*Case, as a tool from the class of domain oriented design environments, generates relational database schemas in 3 normal form with all relevant data constraints. SQL Generator is an IIS*Case tool t...

IIS*Case is an integrated CASE tool that supports the automation and intelligent support of complex and highly formalized design and programming tasks in the development of an information system. IIS*Case, as a tool from the class of domain oriented design environments, generates relational database schemas in 3 normal form with all relevant data constraints. SQL Generator is an IIS*Case tool t...