Afficher la notice abrégée

dc.contributor.authorPinzon, Cristian I.
dc.contributor.authorPaz, Juan F. de
dc.contributor.authorHerrero Cosío, Álvaro 
dc.contributor.authorCorchado, Emilio 
dc.contributor.authorBajo, Javier
dc.contributor.authorCorchado, Juan M.
dc.date.accessioned2015-11-10T11:32:01Z
dc.date.available2015-11-10T11:32:01Z
dc.date.issued2013-05
dc.identifier.issn0020-0255
dc.identifier.urihttp://hdl.handle.net/10259/3875
dc.description.abstractThis study presents a multiagent architecture aimed at detecting SQL injection attacks, which are one of the most prevalent threats for modern databases. The proposed architecture is based on a hierarchical and distributed strategy where the functionalities are structured on layers. SQL-injection attacks, one of the most dangerous attacks to online databases, are the focus of this research. The agents in each one of the layers are specialized in specific tasks, such as data gathering, data classification, and visualization. This study presents two key agents under a hybrid architecture: a classifier agent that incorporates a Case-Based Reasoning engine employing advanced algorithms in the reasoning cycle stages, and a visualizer agent that integrates several techniques to facilitate the visual analysis of suspicious queries. The former incorporates a new classification model based on a mixture of a neural network and a Support Vector Machine in order to classify SQL queries in a reliable way. The latter combines clustering and neural projection techniques to support the visual analysis and identification of target attacks. The proposed approach was tested in a real-traffic case study and its experimental results, which validate the performance of the proposed approach, are presented in this paperen
dc.description.sponsorshipSpanish Ministry of Science projects OVAMAH (TIN 2009-13839-C03-03) and MIDAS (TIN 2010-21272-C02-01), funded by the European Regional Development Fund, projects of the Junta of Castilla and Leon BU006A08 and JCYL-2002-05; Projects of the Spanish Government SA071A08, CIT-020000-2008-2 and CIT-020000-2009-12; the Professional Excellence Program 2006-2010 IFARHU-SENACYT-Panama. The authors would also like to thank the vehicle interior manufacturer, Grupo Antolin Ingenieria S.A., within the framework of the project MAGNO2008 - 1028. - CENIT Project funded by the Spanish Ministry.en
dc.format.mimetypeapplication/pdf
dc.language.isoenges
dc.publisherElsevieren
dc.relation.ispartofInformation Sciences. 2013, V. 231, p. 15–31en
dc.rightsAttribution-NonCommercial-NoDerivatives 4.0 International
dc.rights.urihttp://creativecommons.org/licenses/by-nc-nd/4.0/
dc.subjectIntrusion Detectionen
dc.subjectSQL injection attacksen
dc.subjectData miningen
dc.subjectCBRen
dc.subjectSVMen
dc.subjectNeural networksen
dc.subject.otherInformáticaes
dc.subject.otherComputer scienceen
dc.titleidMAS-SQL: Intrusion Detection Based on MAS to Detect and Block SQL injection through data miningen
dc.typeinfo:eu-repo/semantics/article
dc.rights.accessRightsinfo:eu-repo/semantics/openAccess
dc.relation.publisherversionhttp://dx.doi.org/10.1016/j.ins.2011.06.020
dc.identifier.doi10.1016/j.ins.2011.06.020
dc.relation.projectIDinfo:eu-repo/grantAgreement/JCyL/BU006A08
dc.relation.projectIDinfo:eu-repo/grantAgreement/JCyL/JCYL-2002-05
dc.relation.projectIDinfo:eu-repo/grantAgreement/MICINN/TIN 2009-13839-C03-03
dc.relation.projectIDinfo:eu-repo/grantAgreement/MICINN/TIN 2010-21272-C02-01
dc.relation.projectIDinfo:eu-repo/grantAgreement/MICINN/CIT-020000-2008-2
dc.relation.projectIDinfo:eu-repo/grantAgreement/MICINN/CIT-020000-2009-12
dc.relation.projectIDinfo:eu-repo/grantAgreement/GE/SA071A08
dc.type.hasVersioninfo:eu-repo/semantics/acceptedVersionen


Fichier(s) constituant ce document

Thumbnail

Ce document figure dans la(les) collection(s) suivante(s)

Afficher la notice abrégée