1. Michio Sonoda, Takeshi Matsuda, On Automatic Detection of SQL Injection Attacks by the Feature Extraction of the Single Character, Proceeding of 2011 IEEE International Conference on Systems.
2. Takeshi Matsuda, Daiki Koizumi, Michio Sonoda,and Shigeichi Hirasawa, ―On Predictive Errors of SQL Injection Attack Detection by the Feature of the Single Character,‖ Proceeding of 2011 IEEE International Conference on Systems, Man, and Cybernetics (to appear).
3. G. T. Buehrer, B. W. Weide, P. A. G. Sivilotti, Using Parse Tree Validation to Prevent SQL Injection Attacks, SEM 2005
4. W. G. Halfond, A. Orso, Combining Static Analysis & Runtime Monitoring to Counter SQL-Injection Attacks,WODA 2005
5. W. G. Halfond, A. Orso, AMNESIA: Analysis and Monitoring for NEutralizing SQL Injection Attacks, ASE 2005
6. Tsunoda Naoki, Yasui Hiroyuki, and Matsuyama Minoru, Detection for SQL Injection with Anomaly Detection Method, The 71th National Convention of ISPJ collection of papers (3), pp.379–380, 2009.
7. William Robertson, Giovanni Vigna, Christopher Kruegel, and Richard A. Kemmerer, ―Using Generalization and Characterization Techniques in the Anomaly-based Detection of Web Attacks,‖ in Proceeding of the Network and Distributed System Security (NDSS) Symposium, San Diego, CA, February, 2006.
8. Justin Clarke, SQL Injection Attacks And Defense,Syngress Publishing Inc., 2009.
9. Ke Wei, M. Muthuprasanna, S. Kothari, Eliminating SQL Injection Attacks in Stored Procedures, pp. 191-198,IEEE ASWEC, 2006
10. W. R. Cook, S. Rai, Safe Query Objects: Statically Typed Objects as Remotely Executable Queries, ICSE 2005
11. R. McClure, I. Kruger, SQL DOM: Compile Time Checking of Dynamic SQL Statements, ICSE 2005