Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device for detecting SQL (Structured Query Language) injection attack

A technology of injecting attack and detection methods, applied in the field of information security, can solve the problems of false positives, large amount of calculation, high false positive rate of website protection methods, etc., to achieve the effect of improving detection efficiency and solving false positive rate

Active Publication Date: 2011-05-04
CHINA MOBILE GROUP SHANDONG
View PDF4 Cites 22 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In practice, the access requests provided by users who normally visit the website may occasionally contain SQL injection keywords, so users who visit the website normally may be mistakenly identified as attacking users and their legitimate access to the website may be blocked, resulting in erroneous Therefore, this SQL injection attack detection method, which is identified as a SQL injection attack whenever a SQL injection keyword appears, will inevitably lead to a high false positive rate in the SQL injection attack detection process of the existing website protection method
In addition, instead of blocking access in time to malicious users who are conducting SQL injection attacks, SQL injection keyword matching processing is performed on each access request, which also makes this SQL injection attack detection method a large amount of calculation and efficient. very low

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for detecting SQL (Structured Query Language) injection attack
  • Method and device for detecting SQL (Structured Query Language) injection attack
  • Method and device for detecting SQL (Structured Query Language) injection attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] Embodiments of the present invention provide a SQL injection detection method and device thereof, which detect and screen SQL injection attacks from malicious attacking users based on behavioral characteristics of malicious attacking users performing SQL injection attacks. On the one hand, the method generates a blacklist to record the corresponding relationship between the access attribute information of the malicious attacking user and the time information when the user is identified as an SQL injection attack, so as to defend against the short-term and continuous injection of the malicious attacking user. On the one hand, in the temporary storage area, the number of occurrences of the SQL injection keyword carried in the request sent by the visiting user to access the dynamic webpage is accumulated and recorded, and compared with the specified number of times, it is determined that the user is executing the website when the number is higher than the specified number of...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for detecting an SQL (Structured Query Language) injection attack. The method comprises the following steps of: detecting whether a user sends universal resource locator (URL) request messages of a prescribed number of times, which carry SQL injection keywords and are used for requesting to access a related website with the same access attribute information in prescribed time duration or not; if so, affirming that the user is carrying out an SQL injection attack on the website at the moment; and if not, affirming that the user does not carry out the SQL injection attack on the website. The embodiment of the invention also discloses an SQL injection attack detection device. The method and the device for detecting the SQL injection attack provided by the embodiment of the invention effectively overcome the defects of the traditional SQL detection mechanisms on the basis of the behavioral characteristics of the SQL injection attack of malicious personnel and solve the problem of high false alarm rate in the traditional SQL injection attack detection method.

Description

technical field [0001] The invention relates to the technical field of information security, in particular to a SQL injection attack detection method and a device thereof. Background technique [0002] With the gradual development of the Internet, there are more and more network sites providing various services, which provide great convenience to people's daily life. However, also with the development of the Internet and the advancement of computer technology, there are more and more types of attacks against website systems, and more and more frequent. Among them, the SQL injection attack has gradually become one of the most frequent attack methods encountered by the website system. Through the SQL injection attack, the content of the web page can be tampered with and the highest data management authority of the website system may be obtained, which brings serious harm to the website system. Due to the frequent occurrence of SQL injection incidents, it not only damages the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06G06F21/00G06F21/55
Inventor 王自亮曹承祖位莅
Owner CHINA MOBILE GROUP SHANDONG
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com