A Learning Algorithm of Threshold Value on the Automatic Detection of SQL Injection Attack
この論文をさがす
抄録
The SQL injection attack causes very serious problem to web applications which have database including personal data. To detect the SQL injection attack, the parsing and the black list based on the existed attack have been widely used. Those approaches, however, have some problems in terms of the size of list or calculation costs as the number of attacks increases. For this point, the authors have previously proposed a simple automatic detection algorithm of SQL injection attack. This algorithm requires to calculate the contained rate of suspicious characters with input sequence. This rate would be compared with a known real-valued threshold. This paper proposes the learning algorithm to choose the real-valued threshold from training data sets. Furthermore, some criteria would be considered and their performances would also be examined.The SQL injection attack causes very serious problem to web applications which have database including personal data. To detect the SQL injection attack, the parsing and the black list based on the existed attack have been widely used. Those approaches, however, have some problems in terms of the size of list or calculation costs as the number of attacks increases. For this point, the authors have previously proposed a simple automatic detection algorithm of SQL injection attack. This algorithm requires to calculate the contained rate of suspicious characters with input sequence. This rate would be compared with a known real-valued threshold. This paper proposes the learning algorithm to choose the real-valued threshold from training data sets. Furthermore, some criteria would be considered and their performances would also be examined.
収録刊行物
-
- 研究報告数理モデル化と問題解決(MPS)
-
研究報告数理モデル化と問題解決(MPS) 2012 (10), 1-6, 2012-07-09
- Tweet
詳細情報 詳細情報について
-
- CRID
- 1571980077777247616
-
- NII論文ID
- 110009421226
-
- NII書誌ID
- AN10505667
-
- 本文言語コード
- en
-
- データソース種別
-
- CiNii Articles