{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,5]],"date-time":"2024-09-05T11:45:58Z","timestamp":1725536758234},"publisher-location":"Berlin, Heidelberg","reference-count":15,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642035722"},{"type":"electronic","value":"9783642035739"}],"license":[{"start":{"date-parts":[[2009,1,1]],"date-time":"2009-01-01T00:00:00Z","timestamp":1230768000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2009]]},"DOI":"10.1007\/978-3-642-03573-9_22","type":"book-chapter","created":{"date-parts":[[2009,8,25]],"date-time":"2009-08-25T08:48:21Z","timestamp":1251190101000},"page":"271-278","source":"Crossref","is-referenced-by-count":9,"title":["Protecting Database Centric Web Services against SQL\/XPath Injection Attacks"],"prefix":"10.1007","author":[{"given":"Nuno","family":"Laranjeiro","sequence":"first","affiliation":[]},{"given":"Marco","family":"Vieira","sequence":"additional","affiliation":[]},{"given":"Henrique","family":"Madeira","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"key":"22_CR1","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1109\/4236.991449","volume":"6","author":"F. Curbera","year":"2002","unstructured":"Curbera, F., et al.: Unraveling the Web services web: an introduction to SOAP, WSDL, and UDDI. IEEE Internet Computing\u00a06, 86\u201393 (2002)","journal-title":"IEEE Internet Computing"},{"key":"22_CR2","unstructured":"Erl, T.: Service-Oriented Architecture: Concepts, Technology, and Design. Prentice Hall Professional Technical Reference (2005)"},{"key":"22_CR3","doi-asserted-by":"crossref","first-page":"575","DOI":"10.1007\/978-3-642-59412-0_35","volume-title":"Design and code inspections to reduce errors in program development. Software pioneers: contributions to software engineering","author":"M. Fagan","year":"2002","unstructured":"Fagan, M.: Design and code inspections to reduce errors in program development. Software pioneers: contributions to software engineering, pp. 575\u2013607. Springer, Heidelberg (2002)"},{"key":"22_CR4","first-page":"795","volume-title":"28th interna-tional conference on Software engineering","author":"W. Halfond","year":"2006","unstructured":"Halfond, W., Orso, A.: Preventing SQL injection attacks using AMNESIA. In: 28th interna-tional conference on Software engineering, pp. 795\u2013798. ACM, Shanghai (2006)"},{"key":"22_CR5","doi-asserted-by":"crossref","unstructured":"Hovemeyer, D., Pugh, W.: Finding bugs is easy. ACM SIGPLAN Notices, 39 (2004)","DOI":"10.1145\/1052883.1052895"},{"key":"22_CR6","doi-asserted-by":"crossref","unstructured":"Kiczales, G., et al.: Aspect-Oriented Programming. In: 11th European Conf. on Object-oriented Programming (1997)","DOI":"10.1007\/BFb0053381"},{"key":"22_CR7","unstructured":"Laranjeiro, N., Vieira, M., Madeira, H.: EDEL and Security Improvement for Web Services (2009), http:\/\/eden.dei.uc.pt\/~cnl\/papers\/edel-security-tool.zip"},{"key":"22_CR8","volume-title":"International Conference on Web Services (ICWS)","author":"N. Laranjeiro","year":"2009","unstructured":"Laranjeiro, N., Vieira, M., Madeira, H.: Improving Web Services Robustness. In: International Conference on Web Services (ICWS). IEEE Computer Society, Los Angeles (2009)"},{"key":"22_CR9","first-page":"18","volume-title":"Proceedings of the 14th conference on USENIX Security Symposium","author":"V. Livshits","year":"2005","unstructured":"Livshits, V., Lam, M.: Finding security vulnerabilities in java applications with static analysis. In: Proceedings of the 14th conference on USENIX Security Symposium, vol.\u00a014, p. 18. USENIX Association, Baltimore (2005)"},{"key":"22_CR10","unstructured":"McKinsey&Company: Enterprise Software Customer Survey (2008)"},{"key":"22_CR11","volume-title":"The Web Application Hacker\u2019s Handbook: Discovering and Exploiting Security Flaws","author":"D. Stuttard","year":"2007","unstructured":"Stuttard, D., Pinto, M.: The Web Application Hacker\u2019s Handbook: Discovering and Exploiting Security Flaws. Wiley, Chichester (2007)"},{"key":"22_CR12","doi-asserted-by":"publisher","first-page":"589","DOI":"10.1016\/j.infsof.2008.08.002","volume":"51","author":"S. Thomas","year":"2009","unstructured":"Thomas, S., Williams, L., Xie, T.: On automated prepared statement generation to remove SQL injection vulnerabilities. Information and Software Technology\u00a051, 589\u2013598 (2009)","journal-title":"Information and Software Technology"},{"key":"22_CR13","doi-asserted-by":"crossref","unstructured":"Thomas, S., Williams, L.: Using Automated Fix Generation to Secure SQL Statements. In: Third International Workshop on Software Engineering for Secure Systems (2007)","DOI":"10.1109\/SESS.2007.12"},{"key":"22_CR14","unstructured":"Transaction Processing Performance Council: TPC BenchmarkTM App (Application Serv-er) Standard Specification, Version 1.1 (2005), http:\/\/www.tpc.org\/tpc_app\/"},{"key":"22_CR15","doi-asserted-by":"crossref","unstructured":"Vieira, M., Antunes, N., Madeira, H.: Using Web Security Scanners to Detect Vulnerabilities in Web Services. In: Intl. Conf. on Dependable Systems and Networks, Estoril, Lisbon (2009)","DOI":"10.1109\/DSN.2009.5270294"}],"container-title":["Lecture Notes in Computer Science","Database and Expert Systems Applications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-03573-9_22","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,10,9]],"date-time":"2021-10-09T21:11:09Z","timestamp":1633813869000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-03573-9_22"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2009]]},"ISBN":["9783642035722","9783642035739"],"references-count":15,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-03573-9_22","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2009]]}}}