Compartir
Título
SQL injection attack detection in network flow data
Autor
Facultad/Centro
Área de conocimiento
Título de la revista
Computers & Security
Datos de la obra
Crespo-Martínez, I. S., Campazas-Vega, A., Guerrero-Higueras, Á. M., Riego-DelCastillo, V., Álvarez-Aparicio, C., & Fernández-Llamas, C. (2023). SQL injection attack detection in network flow data. Computers & Security, 127(103093), 103093. https://doi.org/10.1016/j.cose.2023.103093
Editor
Elsevier
Fecha
2023
ISSN
0167-4048
Abstract
[EN] SQL injections rank in the OWASP Top 3. The literature shows that analyzing network datagrams allows for detecting or preventing such attacks. Unfortunately, such detection usually implies studying all packets flowing in a computer network. Therefore, routers in charge of routing significant traffic loads usually cannot apply the solutions proposed in the literature. This work demonstrates that detecting SQL injection attacks on flow data from lightweight protocols is possible. For this purpose, we gathered two datasets collecting flow data from several SQL injection attacks on the most popular database engines. After evaluating several machine learning-based algorithms, we get a detection rate of over 97% with a false alarm rate of less than 0.07% with a Logistic Regression-based model.
Materia
Palabras clave
Peer review
SI
ID proyecto
- info:eu-repo/grantAgreement/AEI/PID2021-126592OB-C21/10.13039/501100011033
URI
DOI
Collections
- Untitled [4523]
Files in this item
Tamaño:
1.681
xmlui.dri2xhtml.METS-1.0.size-megabytes
Formato:
Adobe PDF