Evaluation of Anomaly Based Character Distribution Models in the Detection of SQL Injection Attacks

Kiani, Mehrin; Clark, Andrew E.; Mohay, George M.

doi:10.1109/ares.2008.123

Cited by 30 publications

(27 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Through the syntactic analysis of SQL query strings, the data of the HTTP requests are extracted to later be used in the training phase and to determine the threshold to use in the evaluation phase. Bertino, Kamra and Early [5] propose an anomaly detection mechanism applying data mining techniques. The main problem of this approach is to find an adequate threshold to maintain a low rate of both false positives and false negatives.…”

Section: Sql Injection Attacksmentioning

confidence: 99%

“…In [5] two types of SQL injection attacks are raised: tautology attacks and those based on the UNION operator. Through the syntactic analysis of SQL query strings, the data of the HTTP requests are extracted to later be used in the training phase and to determine the threshold to use in the evaluation phase.…”

Section: Sql Injection Attacksmentioning

confidence: 99%

“…Different strategies have been presented as a solution to the problem of SQL injection attacks [1], with special attention given to strategies based on IDSs [2], [3], [4], [5], [6], [7], [8], [9]. One approach based on anomaly detection was proposed by [2], applying a clustering strategy to group similar queries and isolate queries which are considered malicious.…”

Section: Sql Injection Attacksmentioning

confidence: 99%

“…This attack can be used to gain confidential information, to bypass authentication mechanisms, to modify the database, and to execute arbitrary code [2]. A large number of solutions has been proposed so far [3], [4], [5], [6], [7], [8], [9], but they can not defend against sophisticated attack techniques such as those that use alternate encodings and database commands to dynamically construct SQL strings. These approaches lack the learning and adaptation capabilities for dealing with attacks and their possible variations in the future.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

AIIDA-SQL: An Adaptive Intelligent Intrusion Detector Agent for detecting SQL Injection attacks

Pinzón

Paz

Bajo

et al. 2010

2010 10th International Conference on Hybrid Intelligent Systems

View full text Add to dashboard Cite

Section: Sql Injection Attacksmentioning

confidence: 99%

Section: Sql Injection Attacksmentioning

confidence: 99%

Section: Sql Injection Attacksmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

AIIDA-SQL: An Adaptive Intelligent Intrusion Detector Agent for detecting SQL Injection attacks

Pinzón

Paz

Bajo

et al. 2010

2010 10th International Conference on Hybrid Intelligent Systems

View full text Add to dashboard Cite

“…Kiani et al [12], used an anomaly detection approach. They called the model as same character comparison (SCC) model where HTTP request"s section were divided on the basis of character.…”

Section: Literature Surveymentioning

confidence: 99%

Preventing SQL-BasedAttacks Using Intrusion Detection System

ManjuKhari¹,

Karar²

2013

IJSEA

View full text Add to dashboard Cite

Abstract:With the advancement of technology everyone is using computer and web applications. These web applications can be easily made by using rapid application development environments by developers. But they do not consider security aspect necessary in the process of providing attractive functionalities & also they are not experts in that field. This make web applications vulnerable to several attacks. Among these attacks SQL injection is considered most dangerous vulnerability. This paper describes various approaches used by authors to prevent SQL injection attack using various methods like intrusion detection, black box testing etc.

show abstract

CBRid4SQL: A CBR Intrusion Detector for SQL Injection Attacks

Pinzón

Herrero

Paz

et al. 2010

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract.One of the most serious security threats to recently deployed databases has been the SQL Injection attack. This paper presents an agent specialised in the detection of SQL injection attacks. The agent incorporates a Case-Based Reasoning engine which is equipped with a learning and adaptation capacity for the classification of malicious codes. The agent also incorporates advanced algorithms in the reasoning cycle stages. The reuse phase uses an innovative classification model based on a mixture of a neuronal network together with a Support Vector Machine in order to classify the received SQL queries in the most reliable way. Finally, a visualisation neural technique is incorporated, which notably eases the revision stage carried out by human experts in the case of suspicious queries. The Classifier Agent was tested in a real-traffic case study and its experimental results, which validate the performance of the proposed approach, are presented here.

show abstract

Evaluation of Anomaly Based Character Distribution Models in the Detection of SQL Injection Attacks

Cited by 30 publications

References 12 publications

AIIDA-SQL: An Adaptive Intelligent Intrusion Detector Agent for detecting SQL Injection attacks

AIIDA-SQL: An Adaptive Intelligent Intrusion Detector Agent for detecting SQL Injection attacks

Preventing SQL-BasedAttacks Using Intrusion Detection System

CBRid4SQL: A CBR Intrusion Detector for SQL Injection Attacks

Contact Info

Product

Resources

About