CBRid4SQL: a CBR intrusion detector for SQL injection attacks

Authors:
Cristian Pinzón;Álvaro Herrero;Juan F. De Paz;Emilio Corchado;Javier Bajo
Affiliations:
Departamento de Informática y Automática, Universidad de Salamanca, Salamanca, Spain;Department of Civil Engineering, University of Burgos, Spain, Burgos, Spain;Departamento de Informática y Automática, Universidad de Salamanca, Salamanca, Spain;Departamento de Informática y Automática, Universidad de Salamanca, Salamanca, Spain;Departamento de Informática y Automática, Universidad de Salamanca, Salamanca, Spain
Venue:
HAIS'10 Proceedings of the 5th international conference on Hybrid Artificial Intelligence Systems - Volume Part II
Year:
2010

Citing 8
Cited 0

Effiicient BackProp

Neural Networks: Tricks of the Trade, this book is an outgrowth of a 1996 NIPS workshop
Maximum and Minimum Likelihood Hebbian Learning for Exploratory Projection Pursuit

Data Mining and Knowledge Discovery
Intrusion detection using an ensemble of intelligent paradigms

Journal of Network and Computer Applications - Special issue on computational intelligence on the internet
Hybrid multi-agent architecture as a real-time problem-solving model

Expert Systems with Applications: An International Journal
SQL-IDS: a specification-based approach for SQL-injection detection

Proceedings of the 2008 ACM symposium on Applied computing
Evaluation of Anomaly Based Character Distribution Models in the Detection of SQL Injection Attacks

ARES '08 Proceedings of the 2008 Third International Conference on Availability, Reliability and Security
Learning SQL for Database Intrusion Detection Using Context-Sensitive Modelling (Extended Abstract)

DIMVA '09 Proceedings of the 6th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment
A learning-based approach to the detection of SQL attacks

DIMVA'05 Proceedings of the Second international conference on Detection of Intrusions and Malware, and Vulnerability Assessment

Quantified Score

Hi-index	0.00

Visualization

Abstract

One of the most serious security threats to recently deployed databases has been the SQL Injection attack This paper presents an agent specialised in the detection of SQL injection attacks The agent incorporates a Case-Based Reasoning engine which is equipped with a learning and adaptation capacity for the classification of malicious codes The agent also incorporates advanced algorithms in the reasoning cycle stages The reuse phase uses an innovative classification model based on a mixture of a neuronal network together with a Support Vector Machine in order to classify the received SQL queries in the most reliable way Finally, a visualisation neural technique is incorporated, which notably eases the revision stage carried out by human experts in the case of suspicious queries The Classifier Agent was tested in a real-traffic case study and its experimental results, which validate the performance of the proposed approach, are presented here.