Publication: Analyzing SQL Injection Statements Using Common Substructure of Parse Tree
| dc.contributor.author | Warradorn Sirisang | en_US |
| dc.contributor.author | Vasin Suttichaya | en_US |
| dc.contributor.other | Mahidol University | en_US |
| dc.date.accessioned | 2019-08-23T10:55:22Z | |
| dc.date.available | 2019-08-23T10:55:22Z | |
| dc.date.issued | 2018-08-21 | en_US |
| dc.description.abstract | © 2017 IEEE. This paper proposes a SQL injection detection method by analyzing substructure of SQL statement. The proposed method consists of 2 parts, Automated Common Substructure Extracting (ACSE) and Parse Tree Substructure Matching (PTSM). ACSE attempts to extract the duplicated substructures that appear in parse trees of SQL injection statements. PTSM uses the extracted parse tree from ACSE for identifying malicious portions in user's input statements. It also calculates the similarity between the common substructure and input statements. Experimental results show that the proposed method gains an accuracy greater than 90 percent. | en_US |
| dc.identifier.citation | ICSEC 2017 - 21st International Computer Science and Engineering Conference 2017, Proceeding. (2018), 19-23 | en_US |
| dc.identifier.doi | 10.1109/ICSEC.2017.8443774 | en_US |
| dc.identifier.other | 2-s2.0-85053469714 | en_US |
| dc.identifier.uri | https://repository.li.mahidol.ac.th/handle/20.500.14594/45591 | |
| dc.rights | Mahidol University | en_US |
| dc.rights.holder | SCOPUS | en_US |
| dc.source.uri | https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85053469714&origin=inward | en_US |
| dc.subject | Computer Science | en_US |
| dc.title | Analyzing SQL Injection Statements Using Common Substructure of Parse Tree | en_US |
| dc.type | Conference Paper | en_US |
| dspace.entity.type | Publication | |
| mu.datasource.scopus | https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85053469714&origin=inward | en_US |
