CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 12474 > Article
Paper
8 December 2022 Malicious SQL data injection detection
Huizi Yan, Jiwei Chen
Author Affiliations +
Proceedings Volume 12474, Second International Symposium on Computer Technology and Information Science (ISCTIS 2022); 124740B (2022) https://doi.org/10.1117/12.2653531
Event: Second International Symposium on Computer Technology and Information Science (ISCTIS 2022), 2022, Guilin, China
Abstract
SQL injection attack could obtain sensitive information in the database, tamper or delete illegally obtained information, etc., which causes immeasurable losses to the system. Aiming at SQL injection attack, this paper proposes a new SQL injection detection scheme that combines traditional detection methods with abstract syntax tree structure judgment based on semantic analysis. The solution includes modules such as data preprocessing, SQL statement pre-assembly, and semantic analysis. By assembling the user input content and the actual SQL template statement to form a complete SQL statement, the statement is subjected to structural judgment and semantic analysis to determine the request and precisely identify malicious injection attack.
© (2022) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Huizi Yan and Jiwei Chen "Malicious SQL data injection detection", Proc. SPIE 12474, Second International Symposium on Computer Technology and Information Science (ISCTIS 2022), 124740B (8 December 2022); https://doi.org/10.1117/12.2653531
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 6 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Target detection
Databases
Network security
Computer security
Control systems
Information science
RELATED CONTENT
ZTESA — A Zero Trust Endogenous Safety Architecture gain...
Proceedings of SPIE (May 19 2022)
Development and implementation of air switch detection system based on...
Proceedings of SPIE (December 09 2022)
Security in the Cloud: understanding your responsibility
Proceedings of SPIE (May 17 2019)
Data provenance assurance in the cloud using blockchain
Proceedings of SPIE (May 02 2017)
Attacks on public telephone networks: technologies and challenges
Proceedings of SPIE (September 22 2003)
Design and study of security system based on WWW
Proceedings of SPIE (October 03 2001)
End-to-end communications security
Proceedings of SPIE (April 18 2006)
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top