Search engine for discovering works of Art, research articles, and books related to Art and Culture
ShareThis
Javascript must be enabled to continue!

Attacks on SQL Injection and Developing Compressive Framework Using a Hybrid and Machine Learning Approach

View through CrossRef
Abstract Web applications play an important role in everyday life. Various Web applications are used to carry out billions of online transactions. These applications are vulnerable to attacks due to their extensive use. The most prevalent attack is SQL injection, which accepts user input and runs queries in the backend based on the user's input, returning desired results. To counter the SQL injection attack, various approaches have been offered; however, the majority of them either fail to cover the full breadth of the problem. This research paper looks into frequent SQL injection attack forms, their mechanisms, and a way of identifying them based on the SQL query's existence. We propose a comprehensive framework for determining the effectiveness of techniques that address certain issues following the essence of the attack, using hybrid (Statistic and dynamic) and machine learning. An extensive examination of the model based on a test set indicates that the Hybrid and ANN approaches outperform Naive Bayes, SVM, and Decision trees in terms of accuracy in classifying injected Queries. However, when it came to web loading time during testing, Nave Bayes outperformed. The Hybrid Method improved the accuracy of SQL injection attack prevention, according to the test findings. Although we used a limited dataset for training and testing in our study, it is advised that the dataset be expanded and the model be tested in a real-world setting.
Title: Attacks on SQL Injection and Developing Compressive Framework Using a Hybrid and Machine Learning Approach
Description:
Abstract Web applications play an important role in everyday life.
Various Web applications are used to carry out billions of online transactions.
These applications are vulnerable to attacks due to their extensive use.
The most prevalent attack is SQL injection, which accepts user input and runs queries in the backend based on the user's input, returning desired results.
To counter the SQL injection attack, various approaches have been offered; however, the majority of them either fail to cover the full breadth of the problem.
This research paper looks into frequent SQL injection attack forms, their mechanisms, and a way of identifying them based on the SQL query's existence.
We propose a comprehensive framework for determining the effectiveness of techniques that address certain issues following the essence of the attack, using hybrid (Statistic and dynamic) and machine learning.
An extensive examination of the model based on a test set indicates that the Hybrid and ANN approaches outperform Naive Bayes, SVM, and Decision trees in terms of accuracy in classifying injected Queries.
However, when it came to web loading time during testing, Nave Bayes outperformed.
The Hybrid Method improved the accuracy of SQL injection attack prevention, according to the test findings.
Although we used a limited dataset for training and testing in our study, it is advised that the dataset be expanded and the model be tested in a real-world setting.

Related Results

SQL INJECTION ATTACKS DETECTION: A PERFORMANCE COMPARISON ON MULTIPLE CLASSIFICATION MODELS
SQL INJECTION ATTACKS DETECTION: A PERFORMANCE COMPARISON ON MULTIPLE CLASSIFICATION MODELS
SQL injection attacks are a common and serious security threat to web applications, where malicious users exploit vulnerabilities to gain unauthorized access to sensitive data or m...
Optimizing Text-to-SQL Transformations: The Potential of Skeleton Decoupling in SKT-SQL
Optimizing Text-to-SQL Transformations: The Potential of Skeleton Decoupling in SKT-SQL
Abstract The Text-to-SQL technology faces significant challenges in converting natural language questions into SQL code, particularly in handling complexities and diversiti...
Augmenting SQL Injection Attack Detection via Deep Convolutional Neural Network
Augmenting SQL Injection Attack Detection via Deep Convolutional Neural Network
Abstract Advancing the systematic methods or algorithms is necessary because SQL injection attacks can be hazardous for the security of databases and various web applicatio...
Overview of Key Zonal Water Injection Technologies in China
Overview of Key Zonal Water Injection Technologies in China
Abstract Separated layer water injection is the important technology to realize the oilfield long-term high and stable yield. Through continuous researches and te...
Selection of Injectable Drug Product Composition using Machine Learning Models (Preprint)
Selection of Injectable Drug Product Composition using Machine Learning Models (Preprint)
BACKGROUND As of July 2020, a Web of Science search of “machine learning (ML)” nested within the search of “pharmacokinetics or pharmacodynamics” yielded over 100...
Enhancing SQL Injection Prevention: Advanced Machine Learning and LSTM-Based Techniques
Enhancing SQL Injection Prevention: Advanced Machine Learning and LSTM-Based Techniques
A kind of cybercrime known as SQL injection lets attackers alter records by running bogus SQL queries into an input field. This could result from more serious security breaches, il...
Deception-Based Security Framework for IoT: An Empirical Study
Deception-Based Security Framework for IoT: An Empirical Study
<p><b>A large number of Internet of Things (IoT) devices in use has provided a vast attack surface. The security in IoT devices is a significant challenge considering c...
Atomic quantum metrology with narrowband entangled and squeezed states of light
Atomic quantum metrology with narrowband entangled and squeezed states of light
The use of light, especially of laser light, is in many cases the most sensitive way to perform measurements. However, the highest sensitivity that can be achieved with laser light...

Back to Top