Hybrid Approach to Detect and Defeat SQLIA in Web Application Using Pattern Matching Technique
SQL Injection is one of the injection attack type which makes it possible to perform malicious SQL Statements. Behind the web application, these kinds of statements can control the database server. One of the major threats for web application security is SQL Injection attacks (SQLIA’s). SQLIA occur in web application when the attacker manipulates the input data of user query with the help of SQL statements. Due to SQLIA execution successfully that can be data integrity as well as confidentiality may lost which leads to leakage of sensitive information and degrading organization’s market value. Recently the research is carried out in different kinds of pattern matching algorithm which is used for analyzed then tested the SQLIA detection also prevention. This paper proposed a new pattern matching technique for detection and prevention of SQLIA which is implemented by hybriding the Support Vector Machine (SVM) and Decision tree algorithms for clustering and classification of data with the enhancement of Rabin Karp algorithm. This proposed pattern matching algorithm and its efficiency is evaluated using sample of standard attack patterns in different databases.