This document proposes a technique called "web service oriented XPATH authentication" to prevent SQL injection attacks. The proposed system uses two filtration models - an active guard model to detect and prevent suspicious characters, and a service detector model that validates user input against stored data. The system aims to effectively secure applications like banking by preventing all forms of SQL attacks while allowing legitimate users to access databases. Modules described include information gathering, identifying input parameters, and employing various techniques to prevent SQL injection attacks like tautologies, malformed queries, and inference.