An intelligent detection system for SQL attacks on web IDS in a real-time application

Abstract

Web application plays an important role in individual life as well as in any country’s development. Web application has gone through a rapid growth in the recent years and their adaptation is moving faster than that was expected few years ago. Web based applications constitute various types of attacks, in that SQL injection is the worst threat which exploits the most web based applications. It is done by injecting the SQL statements as an input string to gain an unauthorized access to a database. However, in previous system the injection gives an access to some unauthorized users because the development of different approaches to prevent SQL injection still remains an alarming threat to web application. To address this problem an extensive review on different types of SQL injection attacks are presented in this paper. The web intrusion detection system is focused in this paper for threat detection and prevention by using renowned datasets. The strength and weakness of the entire range of SQL injection is estimated by addressing with mathematical models.