Skip to main content
SpringerLink
Log in

Classification Agent-Based Techniques for Detecting Intrusions in Databases

  • Conference paper
Hybrid Artificial Intelligence Systems (HAIS 2008)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 5271))

Included in the following conference series:

Abstract

This paper presents an agent specially designed for the prevention and detection of SQL injection at the database layer of an application. The agent incorporates a Case-based reasoning mechanism whose main characteristic involves a mixture of neural networks that carry out the task of filtering attacks. The agent had been tested and the results obtained are presented in this study.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 139.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 179.00
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Anley, C.: Advanced SQL Injection In SQL Server Applications (2002), http://www.nextgenss.com/papers/advanced-sql-injection.pdf

  2. Halfond, W., Orso, A.: AMNESIA: analysis and monitoring for neutralizing SQL-injection attacks. In: ASE 2005: 20th IEEE/ACM international Conference on Automated software engineering, pp. 174–183. ACM, New York (2005)

    Chapter  Google Scholar 

  3. Wassermann, G., Gould, C., Su, Z., Devanbu, P.: Static Checking of Dynamically Generated Queries in Database Applications. ACM Transactions on Software Engineering and Methodology 16, 14 (2007)

    Article  Google Scholar 

  4. Valeur, F., Mutz, D., Vigna, G.: A Learning-Based Approach to the Detection of SQL Attacks. In: Julisch, K., Krügel, C. (eds.) DIMVA 2005. LNCS, vol. 3548, pp. 123–140. Springer, Heidelberg (2005)

    Google Scholar 

  5. Corchado, J.M., Pavón, J., Corchado, E.S., Castillo, L.F.: Development of CBR-BDI Agents. In: Advances in Case-Based Reasoning. Springer, Heidelberg (2004)

    Google Scholar 

  6. Woolridge, M., Wooldridge, M.J.: Introduction to Multiagent Systems. John Wiley & Sons, New York (2002)

    Google Scholar 

  7. Corchado, J.M., Laza, R., Borrajo, L., De Luis, Y.A., Valiño, M.: Increasing the Autonomy of Deliberative Agents with a Case-Based Reasoning System. International Journal of Computational Intelligence and Applications 3(1), 101–118 (2003)

    Article  Google Scholar 

  8. Fdez-Riverola, F., Iglesias, E.L., Daz, F., Méndez, J.R., Corchado, J.M.: SpamHunting: An instance-based reasoning system for spam labelling and filtering. Decision Support System 43(3), 722–736 (2007)

    Article  Google Scholar 

  9. Ramasubramanian, P., Kannan, A.: Quickprop Neural Network Ensemble Forecasting a Database Intrusion Prediction System. Neural Information Processing 5, 847–852 (2004)

    Google Scholar 

  10. Huang, Y., Huang, S., Lin, T., Tsai, C.: Web application security assessment by fault injection and behavior monitoring, pp. 148–159. ACM, New York (2003)

    Google Scholar 

  11. Rietta, F.: Application layer intrusion detection for SQL injection. In: 44th annual Southeast regional conference, pp. 531–536. ACM, New York (2006)

    Chapter  Google Scholar 

  12. Skaruz, J., Seredynski, F.: Recurrent neural networks towards detection of SQL attacks. In: Parallel and Distributed Processing Symposium, 2007. IPDPS 2007, pp. 1–8. IEEE International, Los Alamitos (2007)

    Chapter  Google Scholar 

  13. Carrascosa, C., Bajo, J., Julian, V., Corchado, J.M., Botti, V.: Hybrid multi-agent architecture as a real-time problem-solving model. Expert System with Application 34, 2–17 (2008)

    Article  Google Scholar 

  14. Kussul, N., Shelestov, A., Sidorenko, A., Skakun, S., Veremeenko, Y.: Intelligent multi-agent information security system, Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications. In: Proceedings of the Second IEEE International Workshop, pp. 120–122 (2003)

    Google Scholar 

  15. Abraham, A., Jain, R., Thomas, J., Han, S.Y.: D-SCIDS: distributed soft computing intrusion detection system. J. Netw. Comput. Appl. 30, 81–98 (2007)

    Article  Google Scholar 

  16. Corchado, J.M., Bajo, J., Abraham, A.: GerAmi: Improving Healthcare Delivery in Geriatric Residences. Intelligent Systems 23, 19–25 (2008)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Universidad Tecnológica de Panamá, Av. Manuel Espinosa, Batista, Panama

    Cristian Pinzón

  2. Universidad Europea de Madrid, Tajo s/n, 28670, Villaviciosa de Odón, Spain

    Yanira De Paz

  3. Instituto Tecnológico de Colima, Av. Tecnológico s/n, 28976, Mexico

    Rosa Cano

Authors
  1. Cristian Pinzón
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yanira De Paz
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Rosa Cano
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Escuela Politécnica Superior, GICAP Research Group, Universidad de Burgo, Calle Francisco de Vitoria S/N, Edifico C, Campus Vena, 09006, Burgos, Spain

    Emilio Corchado

  2. Center of Excellence for Quantifiable Quality of Service, Norwegian University of Science and Technology, 7491, Trondheim, Norway

    Ajith Abraham

  3. Department of Electrical and Computer Engineering, University of Alberta, Edmonton,, T6G 2V4, Alberta, Canada

    Witold Pedrycz

Rights and permissions

Reprints and permissions

Copyright information

© 2008 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Pinzón, C., De Paz, Y., Cano, R. (2008). Classification Agent-Based Techniques for Detecting Intrusions in Databases. In: Corchado, E., Abraham, A., Pedrycz, W. (eds) Hybrid Artificial Intelligence Systems. HAIS 2008. Lecture Notes in Computer Science(), vol 5271. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-87656-4_7

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-87656-4_7

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-87655-7

  • Online ISBN: 978-3-540-87656-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation