摘要
针对传统Web应用防火墙规则库过于庞大、且无法识别新的SQL注入变种攻击,通过深入分析和提取SQL注入的特征,提出了一种基于免疫机理的检测和防护算法。分别设计了基于模式匹配的静态检测模块和基于否定选择算法的动态检测模块,对检测器的生成算法做了改进,并引入基于MapReduce并行化处理机制加快了检测器的生成效率,实验仿真结果验证了该算法的正确性和有效性。
According to the fact that traditional Web application firewall rule base is too large,and can not recognize the new variant of SQL injection attacks(SQLIAs),through analyzing and extracting features of SQL injection,an SQLIAs detection and prevention algorithm based on immune mechanism is proposed.In this paper,we design the static detection pattern matching module and dynamic detection module based on negative selection algorithm.In the proposed algorithm,the method of generating detector is improved,and the parallel processing mechanism is put foward to accelerate the generation efficiency of the detector based on MapReduce.Experimental results verify the correctness and effectiveness of the algorithm.
作者
兰方鹏
崔晓红
LAN Fangpeng CU! Xiaohong(College of Computer Science and Technology, Taiyuan University of Technology, Taiyuan 030024, Chin)
出处
《太原理工大学学报》
北大核心
2017年第5期833-840,共8页
Journal of Taiyuan University of Technology
基金
山西省基础研究资助项目:云环境下基于能耗驱动的资源调度免疫算法研究(2015021106)
山西省科技厅资助项目(2015021106)