Abstract
NoSQL databases were created for the purpose of manipulating large amounts of data in real time. However, at the beginning, security was not important for their developers. The popularity of SQL generated the false belief that NoSQL databases were immune to injection attacks. As a consequence, NoSQL databases were not protected and are vulnerable to injection attacks. In addition, databases with NoSQL queries are not available for experimentation. Therefore, this paper presents a new method for the construction of a NoSQL query database, based on JSON structure. Six classification algorithms were evaluated to identify the injection attacks: SVM, Decision Tree, Random Forest, K-NN, Neural Network and Multilayer Perceptron, obtaining an accuracy with the last two algorithms of 97.6%.
Author supplied keywords
Cite
CITATION STYLE
Mejia-Cabrera, H. I., Paico-Chileno, D., Valdera-Contreras, J. H., Tuesta-Monteza, V. A., & Forero, M. G. (2021). Automatic Detection of Injection Attacks by Machine Learning in NoSQL Databases. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 12725 LNCS, pp. 23–32). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-77004-4_3
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
