A Distributed Hierarchical Multi-agent Architecture for Detecting Injections in SQL Querie
- Format
- Article
- Status
- publishedVersion
- Description
SQL injections consist in inserting keywords and special symbols in the parameters of SQL queries to gain illegitimate access to a database. They are usually identified by analyzing the input parameters and removing the special symbols. In the case of websites, due to the great amount of queries and parameters, it is very common to find parameters without checking that allow bad-intentioned users to introduce keywords and special symbols. This work proposes a distributed architecture based on multi-agent systems that is able to detect SQL injection attacks. The multi-agent architecture incorporates cased-based reasoning, neural networks and support vector machines in order to classify and visualize the queries, allowing the detection and identification of SQL injections. The approach has been tested and the experimental results are presented in this paper.
SQL injections consist in inserting keywords and special symbols in the parameters of SQL queries to gain illegitimate access to a database. They are usually identified by analyzing the input parameters and removing the special symbols. In the case of websites, due to the great amount of queries and parameters, it is very common to find parameters without checking that allow bad-intentioned users to introduce keywords and special symbols. This work proposes a distributed architecture based on multi-agent systems that is able to detect SQL injection attacks. The multi-agent architecture incorporates cased-based reasoning, neural networks and support vector machines in order to classify and visualize the queries, allowing the detection and identification of SQL injections. The approach has been tested and the experimental results are presented in this paper.
- Publication Year
- 2010
- Language
- eng
- Topic
- SQL injection
Database Security
Intrusion Detection Systems
Multi-agent Systems
Case-based Reasoning
Unsupervised Projection Models
SQL injection
Database Security
Intrusion Detection Systems
Multi-agent Systems
Case-based Reasoning
Unsupervised Projection Models
- Repository
- RI de Documento Digitales de Acceso Abierto de la UTP
- Get full text
- http://ridda2.utp.ac.pa/handle/123456789/4796
- Rights
- openAccess
- License
- https://creativecommons.org/licenses/by-nc-sa/4.0/