Until recently, it was difficult to combine programming languages. In his PhD thesis, Martin Bravenboer presents techniques that make it possible to combine programming languages in a safer and more reliable manner. Software that makes use of these methods is no longer sensitive to the most common method of misuse by hackers: so-called injection attacks. Unlike previously proposed solutions for dealing with such attacks, Bravenboer's method provides absolute security, is simpler for the programmer to apply and can be used in all environments where injection attacks occur. Consequently it is not just specific for the SQL database query language: the method can be applied to arbitrary combinations of embedded languages, without any additional effort being required from the programmer.
This project is being carried out within the Jacquard programme of NWO. Jacquard aims to strengthen the Dutch knowledge position in the area of software engineering by heavily involving the commercial sector in the direction scientific research should take. This is realised by simultaneously carrying out theoretical, empirical and experimental research.