SCMAS: A distributed hierarchical multi-agent architecture for blocking attacks to databases

 

Authors
Pinzón Trejos, Cristian; Corchado, Juan; Bajo, Javier; De Paz, Yanira; Perez-Lancho, Belen
Format
Article
Status
publishedVersion
Description

One of the main attacks on databases is the SQL injection attack which causes severe damage both in the commercial aspect and the confidence of users. This paper presents a novel strategy for detecting and preventing SQL injection attacks consisting of a multi-agent based architecture called SCMAS. The SCMAS architecture is structured in hierarchical layers and incorporates SQLCBR agents with improved learning and adaptation capabilities. The SQLCBR agents presented within this paper have been specifically designed to classify SQL injection attacks and to predict the behaviour of malicious users. These agents incorporate a new technique based on a mixture of neural networks and a technique based on a temporal series. This paper begins with a detailed explanation of the SCMAS architecture and the SQLCBR agents. The results of their application to a case study are then presented and discussed.
One of the main attacks on databases is the SQL injection attack which causes severe damage both in the commercial aspect and the confidence of users. This paper presents a novel strategy for detecting and preventing SQL injection attacks consisting of a multi-agent based architecture called SCMAS. The SCMAS architecture is structured in hierarchical layers and incorporates SQLCBR agents with improved learning and adaptation capabilities. The SQLCBR agents presented within this paper have been specifically designed to classify SQL injection attacks and to predict the behaviour of malicious users. These agents incorporate a new technique based on a mixture of neural networks and a technique based on a temporal series. This paper begins with a detailed explanation of the SCMAS architecture and the SQLCBR agents. The results of their application to a case study are then presented and discussed.

Publication Year
2018
Language
eng
Topic
Multi-agent
Case based Reasoning
Security database
SQL injection
Intrusion Detection System
Multi-agent
Case based Reasoning
Security database
SQL injection
Intrusion Detection System
Repository
RI de Documento Digitales de Acceso Abierto de la UTP
Get full text
http://ridda2.utp.ac.pa/handle/123456789/4784
Rights
openAccess
License
https://creativecommons.org/licenses/by-nc-sa/4.0/