Towards Secure SPARQL Queries in Semantic Web Applications using PHP

被引：0

作者：

Bamashmoos, Fatmah ^{[1
,2
]}

Holyer, Ian ^{[1
]}

Tryfonas, Theo ^{[1
]}

Woznowski, Przemyslaw ^{[1
]}

机构：

[1] Univ Bristol, Fac Engn, Bristol, Avon, England

[2] King Abdulaziz Univ, Comp Sci, Jeddah, Saudi Arabia

来源：

2017 11TH IEEE INTERNATIONAL CONFERENCE ON SEMANTIC COMPUTING (ICSC) | 2017年

关键词：

Semantic Web; PHP; SPARQL; Blind SPARQL; SPARUL; Injection attack; Security; Privacy;

D O I：

10.1109/ICSC.2017.29

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

The Semantic Web (SW) is a significant advancement in the field of Internet technologies and an uncharted territory as far as security is concerned. In this paper, we investigate and assess the impact of known attacks of SPARQL/SPARUL injections on Semantic Web applications developed in PHP. We highlight future challenges of developing robust Semantic Web applications using PHP. Our results demonstrate and quantify impacts on Confidentiality, Integrity and Availability (CIA) breaches of data in Semantic Web applications. Our recommendations are targeted to PHP developers, to encourage them to integrate security as early in their design and coding practice as possible.

引用

页码：276 / 277

页数：2

共 50 条

[1] Accelerating Large Semantic Web Databases by Parallel Join Computations of SPARQL Queries
Groppe, Jinghua
Groppe, Sven
APPLIED COMPUTING REVIEW, 2011, 11 (04): : 60 - 70
[2] Using SPARQL and SPIN for Data Quality Management on the Semantic Web
Fuerber, Christian
Hepp, Martin
BUSINESS INFORMATION SYSTEMS, PROCEEDINGS, 2010, 47 : 35 - 46
[3] Scraping Data from Web Pages Using SPARQL Queries
Burget, Radek
WEB ENGINEERING, ICWE 2023, 2023, 13893 : 293 - 300
[4] Towards Verbalizing SPARQL Queries in Arabic
Al Agha, Iyad
El-Radie, Omar
ENGINEERING TECHNOLOGY & APPLIED SCIENCE RESEARCH, 2016, 6 (02) : 937 - 944
[5] Discovering Semantic Web services using SPARQL and intelligent agents
Sbodio, Marco Luca
Martin, David
Moulin, Claude
JOURNAL OF WEB SEMANTICS, 2010, 8 (04): : 310 - 328
[6] Executing SPARQL Queries over the Web of Linked Data
Hartig, Olaf
Bizer, Christian
Freytag, Johann-Christoph
SEMANTIC WEB - ISWC 2009, PROCEEDINGS, 2009, 5823 : 293 - +
[7] A Comparative Study of NLP based Semantic Web Standard model using SPARQL database
Rao, Chennamsetty Madhusudhana
Babu, J. Ravindra
Pimo, S. John
Dixit, Asmita
Jaiswal, Sushma
Jamshed, Aatif
2021 INTERNATIONAL CONFERENCE ON COMPUTING SCIENCES (ICCS 2021), 2021, : 1 - 6
[8] Towards Efficient Distributed SPARQL Queries on Linked Data
Li, Xuejin
Niu, Zhendong
Zhang, Chunxia
ALGORITHMS AND ARCHITECTURES FOR PARALLEL PROCESSING, ICA3PP 2014, PT II, 2014, 8631 : 259 - 272
[9] Static Analysis and Optimization of Semantic Web Queries
Letelier, Andres
Perez, Jorge
Pichler, Reinhard
Skritek, Sebastian
ACM TRANSACTIONS ON DATABASE SYSTEMS, 2013, 38 (04):
[10] Framework for Web Content Mining Using Semantic Search and Natural Language Queries
Shaikh, A. J.
Kolhe, V. L.
2013 IEEE INTERNATIONAL CONFERENCE ON COMPUTATIONAL INTELLIGENCE AND COMPUTING RESEARCH (ICCIC), 2013, : 280 - 284

← 1 2 3 4 5 →