Publication
Query log analysis for SQL injection detection
| dc.contributor.author | Rocha, Alexandra | |
| dc.contributor.author | Alves, Rui | |
| dc.contributor.author | Pedrosa, Tiago | |
| dc.date.accessioned | 2024-01-05T10:06:10Z | |
| dc.date.available | 2024-01-05T10:06:10Z | |
| dc.date.issued | 2023 | |
| dc.description.abstract | Nowadays, more and more services are dependent on the use of resources hosted on the web. The realization of operations such as access to the account bank, credit card operations, among other operations, is something increasingly common in current times, demonstrating not only human dependence on the internet connection, as well as the need to adapt the web resources to the daily life of society. As a result of this growing dependency, web resources now provide a greater amount of confidential information, making the risk of a cyberattack and information leaking grow considerably. In the web context, one of the most well-known attacks is SQL injection that allows the attacker to exploit, through the injection of malicious queries, access to confidential information. This paper suggests a solution for the detection of SQL injection via web resources, using the analysis of the logs of the executed queries. | pt_PT |
| dc.description.sponsorship | This work was partially supported by the Norte Portugal Regional Operational Programme(NORTE 2020), under the PORTUGAL 2020 Partnership Agreement, through the European Regional Development Fund (ERDF), within project “CybersSe- CIP” (NORTE-01-0145-FEDER-000044). The authors are grateful to the Foundation for Science and Technology (FCT, Portugal) for financial support through national funds FCT/MCTES (PIDDAC) to CeDRI (UIDB/05757/2020 and UIDP/05757/2020) and SusTEC (LA/P/0007/2021). | pt_PT |
| dc.description.version | info:eu-repo/semantics/publishedVersion | pt_PT |
| dc.identifier.citation | Rocha, Alexandra; Alves, Rui; Pedrosa, Tiago (2023). Query log analysis for SQL injection detection. In Proceedings of the 9th International Conference on Information Systems Security and Privacy (ICISSP). 22-24 February 2023, Lisbon. ISSN 2184-4356. 1, p. 471-476 | pt_PT |
| dc.identifier.doi | 10.5220/0011667200003405 | pt_PT |
| dc.identifier.isbn | 978989758624-8 | |
| dc.identifier.issn | 2184-4356 | |
| dc.identifier.uri | http://hdl.handle.net/10198/29101 | |
| dc.language.iso | eng | pt_PT |
| dc.peerreviewed | yes | pt_PT |
| dc.relation | LA/P/0007/2021 | pt_PT |
| dc.relation | Research Centre in Digitalization and Intelligent Robotics | |
| dc.relation | Research Centre in Digitalization and Intelligent Robotics | |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/ | pt_PT |
| dc.subject | SQL Injection | pt_PT |
| dc.subject | IDS | pt_PT |
| dc.subject | MySQL | pt_PT |
| dc.subject | Attacks | pt_PT |
| dc.subject | Detection | pt_PT |
| dc.title | Query log analysis for SQL injection detection | pt_PT |
| dc.type | conference object | |
| dspace.entity.type | Publication | |
| oaire.awardTitle | Research Centre in Digitalization and Intelligent Robotics | |
| oaire.awardTitle | Research Centre in Digitalization and Intelligent Robotics | |
| oaire.awardURI | info:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDB%2F05757%2F2020/PT | |
| oaire.awardURI | info:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDP%2F05757%2F2020/PT | |
| oaire.citation.endPage | 476 | pt_PT |
| oaire.citation.startPage | 471 | pt_PT |
| oaire.citation.title | Proceedings of the 9th International Conference on Information Systems Security and Privacy (ICISSP) | pt_PT |
| oaire.citation.volume | 1 | pt_PT |
| oaire.fundingStream | 6817 - DCRRNI ID | |
| oaire.fundingStream | 6817 - DCRRNI ID | |
| person.familyName | Alves | |
| person.familyName | Pedrosa | |
| person.givenName | Rui | |
| person.givenName | Tiago | |
| person.identifier.ciencia-id | A716-1D09-38A0 | |
| person.identifier.ciencia-id | B81E-0583-AEDF | |
| person.identifier.orcid | 0000-0003-4128-8779 | |
| person.identifier.orcid | 0000-0003-4873-2705 | |
| person.identifier.rid | G-2249-2011 | |
| person.identifier.scopus-author-id | 57219876713 | |
| person.identifier.scopus-author-id | 35318153700 | |
| project.funder.identifier | http://doi.org/10.13039/501100001871 | |
| project.funder.identifier | http://doi.org/10.13039/501100001871 | |
| project.funder.name | Fundação para a Ciência e a Tecnologia | |
| project.funder.name | Fundação para a Ciência e a Tecnologia | |
| rcaap.rights | openAccess | pt_PT |
| rcaap.type | conferenceObject | pt_PT |
| relation.isAuthorOfPublication | 59025c90-9178-412c-ae43-fe1a6122c72a | |
| relation.isAuthorOfPublication | fee2835e-2230-4414-a58e-bcba895d1f0b | |
| relation.isAuthorOfPublication.latestForDiscovery | 59025c90-9178-412c-ae43-fe1a6122c72a | |
| relation.isProjectOfPublication | 6e01ddc8-6a82-4131-bca6-84789fa234bd | |
| relation.isProjectOfPublication | d0a17270-80a8-4985-9644-a04c2a9f2dff | |
| relation.isProjectOfPublication.latestForDiscovery | d0a17270-80a8-4985-9644-a04c2a9f2dff |