论文信息 - Database Security using Intrusion Detection System

Database Security using Intrusion Detection System

We propose a project named “Database Security Using IDS”.SQL injection attack is the most common attack in websites nowa-days. SQL Injection refers to an injection attack wherein an attacker can execute malicious SQL statements that control a web application's database server. In this project we propose database intrusion detection mechanism to enhance the security of database through a Website. We will make a system which will log all the activities of an Intruder using SQL Injection in a website. Some malicious codes gets injected to the database by unauthorized users and because of this attack, the actual database can be stolen or destroyed or modified by the hacker. Administrator will be shown the details of the user and can block him if needed. User details are secured using AES encryption algorithm which makes this system more secure.

[1] Marco Vieira,et al. Detection of malicious transactions in DBMS , 2005, 11th Pacific Rim International Symposium on Dependable Computing (PRDC'05).

[2] Dhiren R. Patel,et al. Database Security Architecture for Detection of Malicious Transactions in Database , 2011 .

[3] S. Panda,et al. Protection of Web Application against Sql Injection Attacks , 2013 .

[4] George Varghese,et al. An Improved Construction for Counting Bloom Filters , 2006, ESA.

[5] Aijaz Ahmad,et al. Analysis of SQL Injection Attacks and Prevention Methods in Web Applications , 2016 .

[6] Michael Gertz,et al. DEMIDS: A Misuse Detection System for Database Systems , 2000, IICIS.