Research SQL injection attacks on the Internet to supplement your existing knowledge. Using the information you discovered during this research, in conjunction with what you learned in class, write an incident response report for MU detailing the following information:
A non-technical description of SQL injection vulnerabilities intended for a college management audience.
The threat that SQL injection poses to the college’s data. Include three possible scenarios that describe how an attacker might conduct this type of attack, the information that they may be able to obtain, and how they might use it maliciously.
An implementation plan to fortify the college’s web applications against SQL injection attacks
A monitoring plan that will provide:
Early warning to developers and security administrators that a SQL injection vulnerability exists in a web application
Detection of successful and unsuccessful attempts to conduct SQL injection attacks against college systems
0 comments