PHP application self-protection method based on decision tree classifier

A decision tree classification and user technology, applied in digital data protection, instrument, platform integrity maintenance, etc., can solve problems such as SQL injection vulnerabilities and program hazards, and achieve the effect of improving efficiency

Pending Publication Date: 2022-06-24
NANJING UNIV OF POSTS & TELECOMM
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Most of these vulnerabilities are caused by the fact that the developers did not add sufficient security processing logic to many input points, such as the vulnerability CVE-2018-18546 exposed by the famous PHP framework THINKPHP. The key parameter in .class.php is not properly filtered, which eventually leads to a SQL injection vulnerability here, which brings great harm to the program using this framework. From the perspective of the PHP kernel level, no matter what kind of data, eventually will be passed to certain types of functions for execution

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • PHP application self-protection method based on decision tree classifier
  • PHP application self-protection method based on decision tree classifier

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] Embodiments of the present invention will be disclosed in the drawings below, and for the sake of clarity, many practical details will be described together in the following description. It should be understood, however, that these practical details should not be used to limit the invention. That is, in some embodiments of the present invention, these practical details are unnecessary.

[0022] like Figure 1-2 As shown, the present invention is a PHP application self-protection method based on a decision tree classifier. The present invention analyzes the running process of PHP, adopts the method of taint tracking, HOOKs the dangerous functions in PHP, and then identifies and intercepts them. , to achieve more comprehensive protection. In terms of identification and interception, the present invention uses the algorithm of the decision tree classifier to identify attacks, which effectively improves the identification rate of malicious attacks.

[0023] figure 1 The ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a PHP application self-protection method based on a decision tree classifier. The protection method comprises the following steps: step 1, marking data from an untrusted data source, such as input data of a user, as taint data; 2, analyzing a taint propagation path; and step 3, carrying out attack traffic identification on incoming data at a specific function execution settlement point. According to the method, current mainstream website attack modes can be effectively intercepted, in addition, based on the characteristic that the acting position of the method provided by the invention is located at the bottom layer of the program, the method has a more comprehensive effect on interception, attacks directly injected into the program from the outside can be intercepted, and the security of the program is improved. Meanwhile, attacks caused by logic errors of program contexts can be intercepted, and the method is different from a method for judging by using a large number of databases in the past, so that the efficiency is improved.

Description

technical field [0001] The invention belongs to the technical field of network application security protection, in particular to a PHP application self-protection method based on a decision tree classifier. Background technique [0002] With the rapid development of Internet technology, network security issues have become increasingly important. PHP is a powerful server-side scripting language for creating dynamic interactive sites. About 70% of the world's top one million sites use PHP to develop. There are many kinds of WEB vulnerabilities in PHP applications, corresponding to The defense against each vulnerability is different. Most of these vulnerabilities are caused by the fact that the developers did not add enough security processing logic to many input points, such as the vulnerability CVE-2018-18546 exposed by the famous PHP framework THINKPHP, because the developers are not aware of the framework file Library / Think / Db / Driver The key parameter in .class.php is not...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/55G06F21/62G06K9/62
CPCG06F21/55G06F21/6218G06F18/214G06F18/24323
Inventor 黎轲沙乐天覃国祥章文斌
Owner NANJING UNIV OF POSTS & TELECOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap