| 基于用户行为编码的数据库入侵检测模型 |
| |
| 引用本文: | 赵海燕,戴佳筑,施善.基于用户行为编码的数据库入侵检测模型[J].计算机应用与软件,2010,27(2):97-99,147. |
| |
| 作者姓名: | 赵海燕 戴佳筑 施善 |
| |
| 作者单位: | 上海大学计算机工程与科学学院,上海,200072 |
| |
| 基金项目: | 上海市教委科技发展基金(05AZ68);;上海市重点学科建设项目(J50103) |
| |
| 摘 要: | 鉴于数据库入侵检测系统中模板的数量不断增加,导致入侵检测效率也随着降低。提出基于用户行为编码的数据库入侵检测模型,该模型通过对提交的SQL进行编码,再利用挖掘方法得出语句中属性内部关系的规则,最后形成用户正常行为规则库,从而取代了模板库,提高了检测的效率。该方法不仅能够有效地防止SQL注入,而且也能检测出合法权限滥用。
|
| 关 键 词: | 数据库入侵检测 SQL语句 编码 |
DATABASE INTRUSION DETECTION MODEL BASED ON ENCODING OF USER'S BEHAVIOR |
| |
| Zhao Haiyan,Dai Jiazhu,Shi Shan.DATABASE INTRUSION DETECTION MODEL BASED ON ENCODING OF USER''S BEHAVIOR[J].Computer Applications and Software,2010,27(2):97-99,147. |
| |
| Authors: | Zhao Haiyan Dai Jiazhu Shi Shan |
| |
| Affiliation: | School of Comupter Engineering and Science/a>;Shanghai University/a>;Shanghai 200072/a>;China |
| |
| Abstract: | Increasing number of templates in database intrusion detection system leads to the detection efficiency goes down.In view of this,in the paper we present a database intrusion detection model based on encoding of user's behaviour.The model encodes SQL statements submitted,attains the rules of inner relationship of attributes in sentences with mining algorithm,and eventually forms the rule base of users' normal behaviours,through these procedures it replaces the temples and improves the detection efficiency.T... |
| |
| Keywords: | Database intrusion detection SQL statements Encoding |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
