SCMAS: A distributed hierarchical multi-agent architecture for blocking attacks to databases

One of the main attacks on databases is the SQL injection attack which causes severe damage both in the commercial aspect and the confidence of users. This paper presents a novel strategy for detecting and preventing SQL injection attacks consisting of a multi-agent based architecture called SCMAS....

Descripción completa

Detalles Bibliográficos
Autores: Pinzón Trejos, Cristian, Corchado, Juan, Bajo, Javier, De Paz, Yanira, Perez-Lancho, Belen
Tipo de recurso: artículo
Estado:Versión publicada
Fecha de publicación:2018
País:Panamá
Institución:Universidad Tecnológica de Panamá
Repositorio:Repositorio Institucional de documento digitales de acceso abierto de la UTP
Idioma:inglés
OAI Identifier:oai:ridda2.utp.ac.pa:123456789/4784
Acceso en línea:http://ridda2.utp.ac.pa/handle/123456789/4784
Access Level:acceso abierto
Palabra clave:Multi-agent
Case based Reasoning
Security database
SQL injection
Intrusion Detection System
Descripción
Sumario:One of the main attacks on databases is the SQL injection attack which causes severe damage both in the commercial aspect and the confidence of users. This paper presents a novel strategy for detecting and preventing SQL injection attacks consisting of a multi-agent based architecture called SCMAS. The SCMAS architecture is structured in hierarchical layers and incorporates SQLCBR agents with improved learning and adaptation capabilities. The SQLCBR agents presented within this paper have been specifically designed to classify SQL injection attacks and to predict the behaviour of malicious users. These agents incorporate a new technique based on a mixture of neural networks and a technique based on a temporal series. This paper begins with a detailed explanation of the SCMAS architecture and the SQLCBR agents. The results of their application to a case study are then presented and discussed.