Formal Analysis of Vulnerabilities of Web Applications Based on SQL Injection
- Cite this paper as:
- De Meo F., Rocchetto M., Viganò L. (2016) Formal Analysis of Vulnerabilities of Web Applications Based on SQL Injection. In: Barthe G., Markatos E., Samarati P. (eds) Security and Trust Management. STM 2016. Lecture Notes in Computer Science, vol 9871. Springer, Cham
We present a formal approach for the analysis of attacks that exploit SQLi to violate security properties of web applications. We give a formal representation of web applications and databases, and show that our formalization effectively exploits SQLi attacks. We implemented our approach in a prototype tool called SQLfast and we show its efficiency on four real-world case studies, including the discovery of an attack on Joomla! that no other tool can find.