UCSY's Research Repository
DETECTION OF SQL INJECTION ATTACKS IN ONLINE LEARNING SYSTEM USING RABIN KARP PATTERN MATCHING ALGORITHM
- UCSYRR Home
- /
- Ph.D/Master Thesis & Dissertation
- /
- Master Thesis
- /
- View Item
JavaScript is disabled for your browser. Some features of this site may not work without it.
| dc.contributor.author | WAI, SAN SAN | |
| dc.date.accessioned | 2023-01-03T12:27:04Z | |
| dc.date.available | 2023-01-03T12:27:04Z | |
| dc.date.issued | 2022-12 | |
| dc.identifier.uri | https://onlineresource.ucsy.edu.mm/handle/123456789/2781 | |
| dc.description.abstract | SQL injection is one of the most threatening web application attacks used against SQL database servers and web applications such as online learning, online banking, and online shopping, etc. Due to the pandemic of COVID-19, a variety of web application activities such as learning, banking, and shopping are available. Online learning is also an important role in universities, colleges, institutions and schools for continuous learning from anywhere and anytime. Attackers mainly target online learning web application with these opportunities by using SQL injections to get unauthorized access and perform unauthorized data modification. SQL Injection is also a type of web application security vulnerability in which an attacker is able to submit a database SQL command which is executed by a web application, exposing the back end database. To overcome this problem from attacking with SQL injection in web applications, there are many methods to detect SQLIAs. Among them, the pattern matching approach is one of the most popular approaches in SQL injection detection. Pattern matching is a technique that can be used to identify or detect any anomaly pattern in SQL query sequence. The proposed system uses Rabin-Karp Pattern Matching Algorithm that matches the hash value of the pattern with the hash value of the substring text. The individual characters matching will start if the hash values equal. The hash values calculation step is required as the first step. The proposed system will use SQL injection dataset from Kaggle. The total number of SQL injection patterns is 1224 inject patterns in this dataset. The experimented results show that the detection of SQL injection attack types and attackers’ information (such as MAC address, IP address, etc.) and the evaluate the performance in SQL injection detection in terms of Accuracy (ACC). Therefore, this thesis proposes how to detect SQL injection attacks in online learning system web application. The proposed system uses Rabin-Karp Pattern Matching Algorithm to detect the SQL injection attacks and will be implemented with PHP and MySQL database. | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | University of Computer Studies, Yangon | en_US |
| dc.subject | RABIN-KARP PATTERN MATCHING ALGORITHM | en_US |
| dc.title | DETECTION OF SQL INJECTION ATTACKS IN ONLINE LEARNING SYSTEM USING RABIN KARP PATTERN MATCHING ALGORITHM | en_US |
| dc.type | Thesis | en_US |
Files in this item
This item appears in the following Collection(s)
-
Master Thesis [123]