Protecting SQL servers - an application of the monadic pattern of programming

Dan POPA
Vasile Alecsandri University
Bacau
Romania
popavdan@yahoo.com

In this paper the author is proposing a SQL injection avoiding technique based on modular parser combinators in Haskell. The paper presents the SQL injection problem and methods to protect servers against attacks. An application of the monadic pattern of programming was developed and described. Some definitions, examples and usual solutions are presented. The open source code and the results obtained are described.

Keywords:SQL injection, formal languages, parser combinators, monadic, Haskell
Full paper

BACK