Skip to main content
Disciplines
Automotive Business IT + Informatics Construction + Real Estate Electrical Engineering + Electronics Energy + Sustainability Insurance + Risk Finance + Banking Management + Leadership Marketing + Sales Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Topic Page
Marketing
Start single access now
Access for companies
EXTENDED SEARCH
Log in
Top
Published in:
The Method and Application of Discrimination and Search for Multi-point Grounding of N600 in Secondary Circuit of Voltage Transformer in Substation Read chapter Read first chapter

2024 | OriginalPaper | Chapter

SQL Injection Attack Detection Based on Error Code Knowledge

Authors : HongQing Lin, JianQi Shao, Ting Sun, Xue Zou, HaiFeng Wang

Published in: Proceedings of the 2nd International Conference on Internet of Things, Communication and Intelligent Technology

Publisher: Springer Nature Singapore

Log in

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

Abstract

SQL injection attacks are a commonly used network attack method. To effectively detect and prevent such attacks, this paper proposes a SQL injection detection method based on a knowledge base of error codes associated with SQL injection. The proposed method is comprised of three main components: a data preprocessing module, an automatic detection feature extraction module, and a design module for the error code knowledge base. Using the error code knowledge base, the input SQL statements are matched in real time. As soon as a successful match is detected, the system promptly identifies it as a SQL injection attack and initiates the necessary response measures. By accumulating new error codes, the detection model can be further trained on new samples, thereby enhancing its recognition ability and expanding the detection range of the model. Based on experimental results, the error code knowledge base method achieves an accuracy of 97.34%. Furthermore, it maintains an accuracy of over 96% when tested on a new data set. When compared to traditional feature detection methods, it shows higher accuracy, precision, and recall rates.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

inform now
previous chapter Anomaly Detection of Streaming Data Based on Deep Learning
next chapter Optimization and Estimation of Orbital Capacity for Low-Earth Resources
Literature
1.
Bhavnani, H., Bardia, S., Modi, A., et al.: An extensive review of data security infrastructure and legislature. Secur. Priv. 5(1), e189 (2022)CrossRef
2.
Bedeković, N., Havaš, L., Horvat, T., et al.: The importance of developing preventive techniques for SQL injection attacks. Tehnički glasnik 16(4), 523–529 (2022)CrossRef
3.
Lu, D., Fei, J., Liu, L.: A semantic learning-based SQL injection attack detection technology. Electronics 12(6), 1344–1345 (2023)CrossRef
4.
Sharma, S., Zavarsky, P., Butakov, S.: Machine learning based intrusion detection system for web-based attacks In: 2020 IEEE 6th International Conference on Big Data Security on Cloud (BigDataSecurity), IEEE International Conference on High Performance and Smart Computing (HPSC) and IEEE International Conference on Intelligent Data and Security (IDS), pp. 227–230. IEEE (2020)
5.
Hasan, M., Balbahaith, Z., Tarique, M.: Detection of SQL injection attacks: a machine learning approach In: 2019 International Conference on Electrical and Computing Technologies and Applications (ICECTA), pp. 1–6. (IEEE)
6.
Li, Q., Wang, F., Wang, J., et al.: LSTM-based SQL injection detection method for intelligent transportation system. IEEE Trans. Veh. Technol. 68(5), 4182–4191 (2019)
7.
Raju, P.S., Rao, P.V.: An optimistic security model for improving cyber security using adaptive algorithms to prevent SQL injection attacks. Int. J. Secur. Priv. Pervasive Comput. (IJSPPC) 13(4), 17–32 (2021)CrossRef
8.
Shehu, B., Xhuvani, A., Ahmetaj, S.: Methods of identifying and preventing SQL attacks. Int. J. Comput. Sci. Issues (IJCSI) 9(6), 403–404 (2012)
9.
Yan, D., Li, K., Gu, S., et al.: Network-based bag-of-words model for text classification. IEEE Access 8, 82641–82652 (2020)CrossRef
Metadata
Title
SQL Injection Attack Detection Based on Error Code Knowledge
Authors
HongQing Lin
JianQi Shao
Ting Sun
Xue Zou
HaiFeng Wang
Copyright Year
2024
Publisher
Springer Nature Singapore
Book
Proceedings of the 2nd International Conference on Internet of Things, Communication and Intelligent Technology

Print ISBN: 978-981-9727-56-8

Electronic ISBN: 978-981-9727-57-5

Copyright Year: 2024

DOI
https://doi.org/10.1007/978-981-97-2757-5_50

Premium Partner

    Image Credits