Supercharge Your Innovation With Domain-Expert AI Agents!

SQL sentence safety detection method based on simplified syntax tree

A syntax tree and sentence technology, applied in the field of network security, can solve problems such as security detection

Active Publication Date: 2017-10-24
BEIJING INST OF COMP TECH & APPL
View PDF4 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The technical problem to be solved by the present invention is: how to realize the security detection to complex SQL statement attack

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SQL sentence safety detection method based on simplified syntax tree
  • SQL sentence safety detection method based on simplified syntax tree
  • SQL sentence safety detection method based on simplified syntax tree

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In order to make the purpose, content, and advantages of the present invention clearer, the specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments.

[0035] Aiming at the problem of SQL statement security, the invention proposes a SQL statement security detection method based on a simplified SQL syntax tree. In the process of constructing the SQL syntax tree, the method detects the security of the SQL statement by simultaneously constructing and detecting, and stops the construction of the SQL syntax tree once an abnormality is found in the SQL statement. At the same time, in the process of detection and analysis, the nodes in the SQL syntax tree are marked according to different types of information, and the nodes with special marks are targeted for detection. This method can detect SQL comment attacks, permanent injection, and dynamic Attacks such as statement spl...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to an SQL sentence safety detection method based on a simplified syntax tree, and belongs to the technical field of network safety. According to the method, in a process of constructing a syntax tree for SQL sentences, a strategy of analyzing while constructing is adopted, and safety detection on complicated SQL sentence attack is realized by the simplified SQL syntax structure tree. Meanwhile, a statistic analyzing method is used for digging a normal SQL sentence behavior pattern in an application system, and a detection template is provided for safety detection of unknown SQL sentence behaviors.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a SQL statement security detection method based on a simplified syntax tree. Background technique [0002] The current factors affecting Web security mainly include Web service vulnerabilities, lack of security design in program development, and default database configuration. At present, SQL statement attacks have the most extensive impact on Web security and data security. Defense measures against SQL statement attacks mainly include input information filtering, sensitive information encryption, SQL statement auditing, parameterized query and other means. Among them, input filtering mainly uses keywords and regular expression matching methods to filter the data submitted by Web users. The SQL statement audit records all executed SQL statements, providing a basis for subsequent traceability. Parameterized queries defend against SQL injection attacks at the code layer...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/55G06F17/30H04L29/06
CPCG06F16/2433G06F21/554H04L63/1416H04L63/1466
Inventor 吴朝雄石波沈德峰胡佳谢小明郭江
Owner BEIJING INST OF COMP TECH & APPL
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com