Detection of SQL Injection Using a Genetic Fuzzy Classifier System
Journal Title: International Journal of Advanced Computer Science & Applications - Year 2016, Vol 7, Issue 6
Abstract
SQL Injection (SQLI) is one of the most popular vulnerabilities of web applications. The consequences of SQL injection attack include the possibility of stealing sensitive information or bypassing authentication procedures. SQL injection attacks have different forms and variations. One difficulty in detecting malicious attacks is that such attacks do not have a specific pattern. A new fuzzy rule-based classification system (FBRCS) can tackle the requirements of the current stage of security measures. This paper proposes a genetic fuzzy system for detection of SQLI where not only the accuracy is a priority, but also the learning and the flexibility of the obtained rules. To create the rules having high generalization capabilities, our algorithm builds on initial rules, data-dependent parameters, and an enhancing function that modifies the rule evaluation measures. The enhancing function helps to assess the candidate rules more effectively based on decision subspace. The proposed system has been evaluated using a number of well-known data sets. Results show a significant enhancement in the detection procedure
Authors and Affiliations
Christine Basta, Ahmed elfatatry, Saad Darwish
Keywords
Related Articles
- EP ID EP112470
- DOI 10.14569/IJACSA.2016.070616
- Views 100
- Downloads 0
Experimental Evaluation of the Virtual Environment Efficiency for Distributed Software Development
At every software design stage nowadays, there is an acute need to solve the problem of effective choice of libraries, development technologies, data exchange formats, virtual environment systems, characteristics of virt...
Web 2.0 Technologies and Social Networking Security Fears in Enterprises
Web 2.0 systems have drawn the attention of corporation, many of which now seek to adopt Web 2.0 technologies and transfer its benefits to their organizations. However, with the number of different social networkin...
Speaker Identification based on Hybrid Feature Extraction Techniques
One of the most exciting areas of signal processing is speech processing; speech contains many features or characteristics that can discriminate the identity of the person. The human voice is considered one of the import...
ACOUSTIC STRENGTH OF GREEN TURTLE AND FISH BASED ON FFT ANALYSIS
The acoustic power at difference angle and distance were measure for four different ages of Green Turtles and three species of fish using modified echo sounder V1082. The echo signal from TVG output was digitized at a sa...
Fuzzy Data Mining for Autism Classification of Children
Autism is a development condition linked with healthcare costs, therefore, early screening of autism symptoms can cut down on these costs. The autism screening process involves presenting a series of questions for parent...