An Attack Detection Mechanism Based on a Distributed Hierarchical Multi-agent Architecture for Protecting Databases

This paper presents an innovative approach to detect and classify SQL injection attacks. The existing approaches are centralized while this proposal is based on a distributed hierarchical architecture to provide a robust and dynamic strategy. The strategy for the classification and detection of SQL...

Descripción completa

Detalles Bibliográficos
Autores: Pinzón Trejos, Cristian, De Paz, Yanira, Cano, Rosa, Rubio, Manuel
Tipo de recurso: artículo
Estado:Versión publicada
Fecha de publicación:2009
País:Panamá
Institución:Universidad Tecnológica de Panamá
Repositorio:Repositorio Institucional de documento digitales de acceso abierto de la UTP
Idioma:inglés
OAI Identifier:oai:ridda2.utp.ac.pa:123456789/4885
Acceso en línea:http://ridda2.utp.ac.pa/handle/123456789/4885
Access Level:acceso abierto
Palabra clave:SQL injection
Security database
IDS
Multi-agent
Case-based reasoning
Descripción
Sumario:This paper presents an innovative approach to detect and classify SQL injection attacks. The existing approaches are centralized while this proposal is based on a distributed hierarchical architecture to provide a robust and dynamic strategy. The strategy for the classification and detection of SQL injection attacks uses a combination based on detection by anomalies and misuses. The detection by anomaly uses a case-based reasoning mechanism incorporating a mixture of neural networks. The approach has been tested and the results are presented in this paper.