Paper Info
Title
Intrusion Detection Systems For Mitigating Sql Injection Attacks: Review And State-Of-Practice
Abstract
Databases are widely used by organizations to store business-critical information, which makes them one of the most attractive targets for security attacks. SQL Injection is the most common attack to webpages with dynamic content. To mitigate it, organizations use Intrusion Detection Systems (IDS) as part of the security infrastructure, to detect this type of attack. However, the authors observe a gap between the comprehensive state-of-the-art in detecting SQL Injection attacks and the state-of-practice regarding existing tools capable of detecting such attacks. The majority of IDS implementations provide little or no protection against SQL Injection attacks, with exceptions like the tools Bro and ModSecurity. In this article, the authors compare these tools using the CSIC dataset in order to examine the state-of-practice in database protection from SQL Injection attacks, identifying the main characteristics and implementation details needed for IDS s to successfully detect such attacks. The experiments indicate that signature-based IDS provide the greatest coverage against SQL Injection.
Year
DOI
Venue
2020
10.4018/IJISP.2020040102
INTERNATIONAL JOURNAL OF INFORMATION SECURITY AND PRIVACY
Keywords
DocType
Volume
Databases, Intrusion Detection Systems, ModSecurity, SQL Injection Attacks
Journal
14
Issue
ISSN
Citations 
2
1930-1650
0
PageRank 
References 
Authors
0.34
0
3
Name
Order
Citations
PageRank
Rui Filipe Silva100.34
Raul Barbosa211019.08
Jorge Bernardino316541.48