NCI WEBSITE
NORMA eResearch @NCI Library

Enhancing Security in Node.js Applications to Prevent SQL Injection

Tools

Elugoti, Pradeep Kumar Reddy (2024) Enhancing Security in Node.js Applications to Prevent SQL Injection. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration Manual]
Preview
 PDF (Configuration Manual)
Download (476kB) | Preview

Abstract

Web applications’ emergence has made security a key issue in electronic business and interaction, including managing risks associated with the SQL Injection (SQLi) vulnerability. This paper assesses the ability of Node.js-based applications to defend against SQLi threats through adopting the event-driven approach. The key areas of the study are parameterized queries, input validation and Object-Relational Mapping (ORM), and their efficiency in protecting the application with regards to performance and usability. This project outcomes helps to prove that in case of the correct usage the mentioned security measures are fairly effective in the Framework reduction of SQLi vulnerabilities. Their effectiveness was then checked through test too through manual manipulation of the vulnerabilities and automated testing using OWASP ZAP. The first experiments demonstrated that SQLi attacks boasted an almost 100% chance of success when input was not sanitized – thus, the need for proper security measures. This work underlines how it is crucial to implement extensive security principles at every phase of web applications’ evolution, which will improve safety within the Node.js domain.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Aleburu, Joel
UNSPECIFIED
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Ciara O'Brien
Date Deposited: 18 Jul 2025 11:16
Last Modified: 18 Jul 2025 11:16
URI: https://norma.ncirl.ie/id/eprint/8202

Actions (login required)

View Item View Item