Towards Secure SPARQL Queries in Semantic Web Applications using PHP

被引：0

作者：

Bamashmoos, Fatmah ^{[1
,2
]}

Holyer, Ian ^{[1
]}

Tryfonas, Theo ^{[1
]}

Woznowski, Przemyslaw ^{[1
]}

机构：

[1] Univ Bristol, Fac Engn, Bristol, Avon, England

[2] King Abdulaziz Univ, Comp Sci, Jeddah, Saudi Arabia

来源：

2017 11TH IEEE INTERNATIONAL CONFERENCE ON SEMANTIC COMPUTING (ICSC) | 2017年

关键词：

Semantic Web; PHP; SPARQL; Blind SPARQL; SPARUL; Injection attack; Security; Privacy;

D O I：

10.1109/ICSC.2017.29

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

The Semantic Web (SW) is a significant advancement in the field of Internet technologies and an uncharted territory as far as security is concerned. In this paper, we investigate and assess the impact of known attacks of SPARQL/SPARUL injections on Semantic Web applications developed in PHP. We highlight future challenges of developing robust Semantic Web applications using PHP. Our results demonstrate and quantify impacts on Confidentiality, Integrity and Availability (CIA) breaches of data in Semantic Web applications. Our recommendations are targeted to PHP developers, to encourage them to integrate security as early in their design and coding practice as possible.

引用

页码：276 / 277

页数：2

共 50 条

[1] Towards Content-Aware SPARQL Query Caching for Semantic Web Applications
Shu, Yanfeng
Compton, Michael
Mueller, Heiko
Taylor, Kerry
WEB INFORMATION SYSTEMS ENGINEERING - WISE 2013, PT I, 2013, 8180 : 320 - 329
[2] Accelerating Large Semantic Web Databases by Parallel Join Computations of SPARQL Queries
Groppe, Jinghua
Groppe, Sven
APPLIED COMPUTING REVIEW, 2011, 11 (04): : 60 - 70
[3] Scraping Data from Web Pages Using SPARQL Queries
Burget, Radek
WEB ENGINEERING, ICWE 2023, 2023, 13893 : 293 - 300
[4] Improving the Performance of Semantic Web Applications with SPARQL Query Caching
Martin, Michael
Unbehauen, Joerg
Auer, Soeren
SEMANTIC WEB: RESEARCH AND APPLICATIONS, PT 2, PROCEEDINGS, 2010, 6089 : 304 - 318
[5] Towards Verbalizing SPARQL Queries in Arabic
Al Agha, Iyad
El-Radie, Omar
ENGINEERING TECHNOLOGY & APPLIED SCIENCE RESEARCH, 2016, 6 (02) : 937 - 944
[6] Processing SPARQL Aggregate Queries with Web Preemption
Grall, Arnaud
Minier, Thomas
Skaf-Molli, Hala
Molli, Pascal
SEMANTIC WEB (ESWC 2020), 2020, 12123 : 235 - 251
[7] Using SPARQL and SPIN for Data Quality Management on the Semantic Web
Fuerber, Christian
Hepp, Martin
BUSINESS INFORMATION SYSTEMS, PROCEEDINGS, 2010, 47 : 35 - 46
[8] Discovering Semantic Web services using SPARQL and intelligent agents
Sbodio, Marco Luca
Martin, David
Moulin, Claude
JOURNAL OF WEB SEMANTICS, 2010, 8 (04): : 310 - 328
[9] Query for Semantic Web Services Using SPARQL-DL
Wang, Hai
Zhai, Sheping
2009 SECOND INTERNATIONAL SYMPOSIUM ON KNOWLEDGE ACQUISITION AND MODELING: KAM 2009, VOL 1, 2009, : 367 - 370
[10] Towards a Cooperative Query Language for Semantic Web Database Queries
Jean, Stephane
Hadjali, Allel
Mars, Ammar
ON THE MOVE TO MEANINGFUL INTERNET SYSTEMS: OTM 2013 CONFERENCES, 2013, 8185 : 519 - 526

← 1 2 3 4 5 →