Abstract :
Website security is very important, security is needed to anticipate any vulnerability and various website attacks, one of them is SQL Injection Attack. This attack can be carried out automatically using tools or manually by injecting SQL queries into website parameters. This attack can cause losses to the website administrator, because basically this attack can be used to steal data, modifying data, or can even be used to damage the system on the website. This research applies the Web Application Firewall and Web Security Standards, it used to designing security
systems for repair security holes and can also be used to prevent SQL Injection attacks. Implementation of both works by monitoring every user request that enters the website
before the request is executed by the database. From the implementation that has been done by the Web Application Firewall and Web Security Standards, both it is able to
become a security system that can prevent SQL Injection attacks and also be able to reduce the vulnerability contained on the website.
Keyword : Web Attacks, SQL Injection, Web Security Standard, Website, Web
Application Firewall.