A Countermeasure to SQL Injection Attack for Cloud Environment

被引:18
|
作者
Wu, Tsu-Yang [1 ]
Chen, Chien-Ming [1 ]
Sun, Xiuyang [1 ]
Liu, Shuai [1 ]
Lin, Jerry Chun-Wei [2 ]
机构
[1] Harbin Inst Technol, Shenzhen Grad Sch, Sch Comp Sci & Technol, Shenzhen, Peoples R China
[2] Harbin Inst Technol, Shenzhen Grad Sch, Sch Comp Sci & Technol, IIIRC, Shenzhen, Peoples R China
来源
WIRELESS PERSONAL COMMUNICATIONS | 2017年 / 96卷 / 04期
基金
中国国家自然科学基金;
关键词
Cloud computing; SQL injection attack; Network security; SECURITY;
D O I
10.1007/s11277-016-3741-7
中图分类号
TN [电子技术、通信技术];
学科分类号
0809 ;
摘要
Although cloud computing becomes a new computing model, a variety of security threats have been described. Among these threats, SQL injection attack (SQLIA) has received increasing attention recently. In the past, many researchers had proposed several methods to counter SQLIAs. However, these countermeasures of SQLIAs cannot be applied to cloud environments directly. In this paper, we propose a mechanism called CCSD (Cloud Computing SQLIA Detection) to detect SQLIAs. CCSD does not require any access to the application's source code. Hence, it can be directly applied to existing cloud environments. The experimental results demonstrate that CCSD has high accuracy, low false positive rates and low time consumption.
引用
收藏
页码:5279 / 5293
页数:15
相关论文
共 50 条
  • [21] A Confidence Interval Based Filtering Against DDoS Attack in Cloud Environment: A Confidence Interval Against DDoS Attack in the Cloud
    Haddadi, Mohamed
    Beghdad, Rachid
    INTERNATIONAL JOURNAL OF INFORMATION SECURITY AND PRIVACY, 2020, 14 (04) : 42 - 56
  • [22] DDoS Attack Detection and Mitigation Techniques in Cloud Computing Environment
    Devi, Kiruthika B. S.
    Subbulakshmi, T.
    PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON INTELLIGENT SUSTAINABLE SYSTEMS (ICISS 2017), 2017, : 512 - 517
  • [23] Detection Mechanisms of DDoS Attack in Cloud Computing Environment: A Survey
    Alarqan, Mohammad Abdelkareem
    Zaaba, Zarul Fitri
    Almomani, Ammar
    ADVANCES IN CYBER SECURITY (ACES 2019), 2020, 1132 : 138 - 152
  • [24] On Predictive Errors of SQL Injection Attack Detection by the Feature of the Single Character
    Matsuda, Takeshi
    Koizumi, Daiki
    Sonoda, Michio
    Hirasawa, Shigeichi
    2011 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN, AND CYBERNETICS (SMC), 2011, : 1722 - 1727
  • [25] A Semantic Learning-Based SQL Injection Attack Detection Technology
    Lu, Dongzhe
    Fei, Jinlong
    Liu, Long
    ELECTRONICS, 2023, 12 (06)
  • [26] SQL Injection Attack Detection Method using the Approximation Function of Zeta Distribution
    Oosawa, Taiki
    Matsuda, Takeshi
    2014 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN AND CYBERNETICS (SMC), 2014, : 819 - 824
  • [27] AN EFFICIENT TECHNIQUE FOR PREVENTING SQL INJECTION ATTACK USING PATTERN MATCHING ALGORITHM
    Prabakar, M. Amutha
    KarthiKeyan, M.
    Marimuthu, K.
    2013 IEEE INTERNATIONAL CONFERENCE ON EMERGING TRENDS IN COMPUTING, COMMUNICATION AND NANOTECHNOLOGY (ICE-CCN'13), 2013, : 503 - 506
  • [28] An integration approach of hybrid databases based on SQL in cloud computing environment
    Li, Changqing
    Gu, Jianhua
    SOFTWARE-PRACTICE & EXPERIENCE, 2019, 49 (03) : 401 - 422
  • [29] Understanding DDoS Attack & Its Effect In Cloud Environment
    Deshmukh, Rashmi V.
    Devadkar, Kailas K.
    PROCEEDINGS OF 4TH INTERNATIONAL CONFERENCE ON ADVANCES IN COMPUTING, COMMUNICATION AND CONTROL(ICAC3'15), 2015, 49 : 202 - 210
  • [30] SDMTA: Attack Detection and Mitigation Mechanism for DDoS Vulnerabilities in Hybrid Cloud Environment
    Kautish, Sandeep
    Reyana, A.
    Vidyarthi, Ankit
    IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2022, 18 (09) : 6455 - 6463
12345