SCMAS: A Distributed Hierarchical Multi-agent Architecture for Blocking Attacks to Databases
Bajo Pérez, Javier
Corchado Rodríguez, Juan M.
de Paz Santana, Yanira
Pérez Lancho, Belen
- Publisher: ICIC International
Intrusion Detection System | Case based Reasoning | Computer Science | Multi-agent | SQL injection | Security database
One of the main attacks on databases is the SQL injection attack which causes severe damage both in the commercial aspect and the confidence of users. This paper presents a novel strategy for detecting and preventing SQL injection attacks consisting of a multi-agent based architecture called SCMAS. The SCMAS architecture is structured in hierarchical layers and incorporates SQLCBR agents with improved learning and adaptation capabilities. The SQLCBR agents presented within this paper have been specifically designed to classify SQL injection attacks and to predict the behaviour of malicious users. These agents incorporate a new technique based on a mixture of neural networks and a technique based on a temporal series. This paper begins with a detailed explanation of the SCMAS architecture and the SQLCBR agents. The results of their application to a case study are then presented and discussed.