SCMAS: A distributed hierarchical multi-agent architecture for blocking attacks to databases

Article English OPEN
Pinzón Trejos, Cristian ; Corchado, Juan ; Bajo, Javier ; De Paz, Yanira ; Perez-Lancho, Belen (2010)
  • Publisher: ICIC International
  • Subject: Intrusion Detection System | Computer Science | Case based Reasoning | Multi-agent | SQL injection | Security database

One of the main attacks on databases is the SQL injection attack which causes severe damage both in the commercial aspect and the confidence of users. This paper presents a novel strategy for detecting and preventing SQL injection attacks consisting of a multi-agent based architecture called SCMAS. The SCMAS architecture is structured in hierarchical layers and incorporates SQLCBR agents with improved learning and adaptation capabilities. The SQLCBR agents presented within this paper have been specifically designed to classify SQL injection attacks and to predict the behaviour of malicious users. These agents incorporate a new technique based on a mixture of neural networks and a technique based on a temporal series. This paper begins with a detailed explanation of the SCMAS architecture and the SQLCBR agents. The results of their application to a case study are then presented and discussed.
Share - Bookmark