Towards Secure SPARQL Queries in Semantic Web Applications Using PHP

Fatmah Bamashmoos, Ian Holyer, Theodore Tryfonas, Przemyslaw Woznowski

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

2 Citations (Scopus)

Abstract

The Semantic Web (SW) is a significant advancement in the field of Internet technologies and an uncharted territory as far as security is concerned. In this paper, we investigate and assess the impact of known attacks of SPARQL/SPARUL injections on Semantic Web applications developed in PHP. We highlight future challenges of developing robust Semantic Web applications using PHP. Our results demonstrate and quantify impacts on Confidentiality, Integrity and Availability (CIA) breaches of data in Semantic Web applications. Our recommendations are targeted to PHP developers, to encourage them to integrate security as early in their design and coding practice as possible.

Original languageEnglish
Title of host publicationProceedings - IEEE 11th International Conference on Semantic Computing, ICSC 2017
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages276-277
Number of pages2
ISBN (Electronic)9781509048960
DOIs
Publication statusPublished - 29 Mar 2017
Event11th IEEE International Conference on Semantic Computing, ICSC 2017 - San Diego, United States
Duration: 30 Jan 20171 Feb 2017

Conference

Conference11th IEEE International Conference on Semantic Computing, ICSC 2017
CountryUnited States
CitySan Diego
Period30/01/171/02/17

Keywords

  • Blind SPARQL
  • Injection attack
  • PHP
  • Privacy
  • Security
  • Semantic Web
  • SPARQL
  • SPARUL

Fingerprint Dive into the research topics of 'Towards Secure SPARQL Queries in Semantic Web Applications Using PHP'. Together they form a unique fingerprint.

  • Cite this

    Bamashmoos, F., Holyer, I., Tryfonas, T., & Woznowski, P. (2017). Towards Secure SPARQL Queries in Semantic Web Applications Using PHP. In Proceedings - IEEE 11th International Conference on Semantic Computing, ICSC 2017 (pp. 276-277). [7889545] Institute of Electrical and Electronics Engineers (IEEE). https://doi.org/10.1109/ICSC.2017.29