A Distributed Hierarchical Multi-agent Architecture for Detecting Injections in SQL Querie
Date
2010-07-022010-07-02
Author
Pinzón Trejos, Cristian
De Paz, Juan
Herrero, Álvaro
Corchado, Emilio
Bajo, Javier
Metadata
Show full item recordAbstract
SQL injections consist in inserting keywords and special symbols in the parameters of SQL queries to gain illegitimate access to a database. They are usually identified by analyzing the input parameters and removing the special symbols. In the case of websites, due to the great amount of queries and parameters, it is very common to find parameters without checking that allow bad-intentioned users to introduce keywords and special symbols. This work proposes a distributed architecture based on multi-agent systems that is able to detect SQL injection attacks. The multi-agent architecture incorporates cased-based reasoning, neural networks and support vector machines in order to classify and visualize the queries, allowing the detection and identification of SQL injections. The approach has been tested and the experimental results are presented in this paper.