2024-03-28T19:32:12Zhttps://riubu.ubu.es/oai/requestoai:riubu.ubu.es:10259/38752021-11-10T09:38:23Zcom_10259_3847com_10259_5086com_10259_2604col_10259_3848
00925njm 22002777a 4500
dc
Pinzon, Cristian I.
author
Paz, Juan F. de
author
Herrero, Alvaro
author
Corchado, Emilio
author
Bajo, Javier
author
Corchado, Juan M.
author
2013-05
This study presents a multiagent architecture aimed at detecting SQL injection attacks, which are one of the most prevalent threats for modern databases. The proposed architecture is based on a hierarchical and distributed strategy where the functionalities are structured on layers. SQL-injection attacks, one of the most dangerous attacks to online databases, are the focus of this research. The agents in each one of the layers are specialized in specific tasks, such as data gathering, data classification, and visualization. This study presents two key agents under a hybrid architecture: a classifier agent that incorporates a Case-Based Reasoning engine employing advanced algorithms in the reasoning cycle stages, and a visualizer agent that integrates several techniques to facilitate the visual analysis of suspicious queries. The former incorporates a new classification model based on a mixture of a neural network and a Support Vector Machine in order to classify SQL queries in a reliable way. The latter combines clustering and neural projection techniques to support the visual analysis and identification of target attacks. The proposed approach was tested in a real-traffic case study and its experimental results, which validate the performance of the proposed approach, are presented in this paper
0020-0255
http://hdl.handle.net/10259/3875
10.1016/j.ins.2011.06.020
Intrusion Detection
SQL injection attacks
Data mining
CBR
SVM
Neural networks
idMAS-SQL: Intrusion Detection Based on MAS to Detect and Block SQL injection through data mining