• Convergence Security Journal
• /
• v.12 no.1
• /
• pp.17-25
• /
• 2012

SQL Injection techniques disclosed web hacking years passed, but these are classified the most dangerous attac ks. Recent web programming data for efficient storage and retrieval using a DBMS is essential. Mainly PHP, JSP, A SP, and scripting language used to interact with the DBMS. In this web environments application does not validate the client's invalid entry may cause abnormal SQL query. These unusual queries to bypass user authentication or da ta that is stored in the database can be exposed. SQL Injection vulnerability environment, an attacker can pass the web-based authentication using username and password and data stored in the database. Measures against SQL Inj ection on has been announced as a number of methods. But if you rely on any one method of many security hole ca n occur. The proposal of four levels leverage is composed with the source code, operational phases, database, server management side and the user input validation. This is a way to apply the measures in terms of why the accident preventive steps for creating a phased step-by-step response nodel, through the process of management measures, if applied, there is the possibility of SQL Injection attacks can be.

• Proceedings of the Korean Information Science Society Conference
• /
• 2004.04b
• /
• pp.232-234
• /
• 2004

본 논문에서 제시된 시스템은 주기억 데이터베이스 시스템 기반의 GIS로서, 서버에 구축된 지리정보를 모바일 기기에서 실시간으로 질의할 수 있도록 설계되었다. 본 시스템은 클라이언트-서버 환경으로 GIS서버가 대용량 GIS 데이터를 저장하고 질의처리 연산을 수행하도록 하였으며 모바일 기기는 단지 서버에 질의만 던지고 그 질의에 해당하는 결과만 실시간으로 제공받는 구조로 설계, 구현하였다. 본 논문은 실시간 모바일 GIS에 적합한 효율적인 인덱스와 SQL like 질의를 사용한 새로운 질의처리기법을 제시한다.

• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.9 no.3
• /
• pp.298-305
• /
• 2016

Various NoSQL databases are more excellent to process a large amount of big data than existing relational databases such as MySQL, PostgreSQL and Oracle. Among widely used NoSQL databases, performance of HBase, Cassandra, MongoDB and Redis was comparatively assessed. For distributed processing of a large amount of data, 12 servers were connected through switching hub and Ubuntu was installed as operating system. As for benchmark tool, YCSB was applied. Read and update ratios changed from 50% and 50%, 95% and 5% and finally, 100% and 0% and each of them was assessed as 200,000 commands developed into 1,200,000 commands for each case. Cassandra was most excellent with transaction processing per second while MongoDB was most excellent with the number of processes carried out per unit time.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.21 no.1
• /
• pp.61-71
• /
• 2017

ARP Spoofing is a basic and core hacking technology for almost all sniffing. It makes change the flow of packets by faking the 2nd layer MAC address. In this paper we suggested an efficient hacking technology for sniffing remote servers in the switched network environment. The suggested 'Faked ARP Reply Unicast Spoofing' makes the bidirectional packets sniffing possible between the client and server, and it makes simplify the procedures for ARP sniffing and hacking program. In this paper we researched the network hacking and implementation technologies based on the suggested ARP spoofing. And we researched various types of servers hacking such as Root ID and PW of Telnet/FTP server, Root ID and PW of MySQL DB server, ID and PW of Web Portal Server, and account information and transaction history of Web Banking Server. And also we researched the implementation techniques of core hacking programs for the ARP Spoofing.

• The Transactions of the Korea Information Processing Society
• /
• v.7 no.10
• /
• pp.3148-3154
• /
• 2000

In this paper. the design and implementationof the on-line registration system for the school affairs is described. The environments for the system configurations include a PC server under Linux Iperating System. Apache Web-server, and MySQL as database engine. In addition, PHP, which becomes a popular Internet server-based script language lately, is used to implement a real-time database. In order to avoid overload problems during short-term registration period, which deconstraces the typical surge of traffics, the proposed system is designed to minimize the unnecessary interfacing tasks. On administrator side task, the sytem is designed to have environments by separating the dechcated server that restricts the scope of specific database thasks. In doing so, it become possibal to build an optical system by distributing, balancing the transaction load, maintainimg the security and efficient administrative tasks.

• Proceedings of the Korean Information Science Society Conference
• /
• 2012.06b
• /
• pp.208-210
• /
• 2012

웹 어플리케이션 서버를 통해 동작하는 웹 어플리케이션에 대해 기능 일부를 수정하고자 할 때, 런타임 변경이 가능하고, 어플리케이션 서버의 재시작이 필요 없는 방법에 대해 설명한다. 이러한 방법은 웹 어플리케이션의 동적 설정을 위해 사용할 수 있으며, 변경된 내용을 반영하는데 1) 서버로 어플리케이션 전체를 재배포할 필요가 없으며, 2) 변경될 부분을 부분 코드에 국한시켜 웹 어플리케이션에서 자주 발생되는 SQL 기술문의 변경이나 비지니스 로직에 대한 작은 변경을 간편하게 수정하고 실행시킬 수 있다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2020.11a
• /
• pp.694-697
• /
• 2020

본 논문은 언리얼 엔진에서 제공하는 Dedicated server를 사용하지 않고 자체적으로 제작한 IOCP모델 서버를 구축하고, 이를 언리얼 클라이언트와 MySQL데이터베이스에 연동하여, 완성된 서버의 성능 테스트를 진행한 결과를 보였다.

• Journal of the Korea Society of Computer and Information
• /
• v.9 no.4 s.32
• /
• pp.5-12
• /
• 2004

The data transformation between XML and Relation Database is made through the Principle of mapping bewtween them. There are two ways to access SQL Server, one is to assign SQL query to URL and the other is to use template file. MS-SQL server takes advantage of OpenXML function to transform the results of executing SQL query into XML documents. That is, OpenXML first makes node tree and then transforms row set data of XML documents into XML data of relation type. In order to insert XML data into database data. data is extracted from parsing XML documents using sp_xml_preparedocument procedure, and then the document structure is mapped into tree structure and stored in a table of database. Consequently, Data transformation between XML and Relation Database is made through mapping bewtween them. This article proposes the principle of mapping between XML and Relation Database and then shows the implementation of transformation between them so that it introduces the possibilty of bringing the extension and efficiency of data and various effects.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 1999.11a
• /
• pp.340-343
• /
• 1999

In this paper, we developed the cyber campus which is a internet based virtual education system. This system is designed by using the client/server architecture and server push mechanism. The basic design tool is mini SQL and PERL for design and implementation. Developed system is tested on the site of Honam university(cybercam.honam.ac.kr) and confirmed its performance. This tool will be very useful as a distance education method for every school and educational agency under the internet environment.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.18 no.2
• /
• pp.141-147
• /
• 2018

The group is one of the hobbies and other life groups, and each person in the group directly attends the meeting and works on the topic of the group. In this paper, we implemented voting, announcements, surveys, and suggestions, which are necessary functions for similar groups including group. We also provide web sites based on Apache web server for convenience of Android smartphone applications, OS except Android, Group management can be managed by using the manager's website which can manage the whole group management. It is designed with Apache web server, web communication language PHP, MySQL database, and Android.