Security in web applications: a comparative analysis of key SQL injection detection techniques

Conference paper

Veerabudren, K. and Bekaroo, G. 2022. Security in web applications: a comparative analysis of key SQL injection detection techniques. 4th International Conference on Emerging Trends in Electrical, Electronic and Communications Engineering (ELECOM). Mauritius 22 - 24 Nov 2022 IEEE. https://doi.org/10.1109/elecom54934.2022.9965264
TypeConference paper
TitleSecurity in web applications: a comparative analysis of key SQL injection detection techniques
AuthorsVeerabudren, K. and Bekaroo, G.
Abstract

Over the years, technological advances have driven massive proliferation of web systems and businesses have harbored a seemingly insatiable need for Internet systems and services. Whilst data is considered as a key asset to businesses and that their security is of extreme importance, there has been growing cybersecurity threats faced by web systems. One of the key attacks that web applications are vulnerable to is SQL injection (SQLi) attacks and successful attacks can reveal sensitive information to attackers or even deface web systems. As part of SQLi defence strategy, effective detection of SQLi attacks is important. Even though different techniques have been devised over the years to detect SQLi attacks, limited work has been undertaken to review and compare the effectiveness of these detection techniques. As such, in order to address this gap in literature, this paper performs a review and comparative analysis of the different SQLi detection techniques, with the aim to detect SQLi attacks in an effective manner and enhance the security of web applications. As part of the investigation, seven SQLi detection techniques including machine learning based detection are reviewed and their effectiveness against different types of SQLi attacks are compared. Results identified positive tainting and adoption of machine learning among the most effective techniques and stored procedures based SQLi as the most challenging attack to detect.

KeywordsSQL injection attacks; detection techniques; comparative analysis; SQLi; SQLia; web applications; cybersecurity
Sustainable Development Goals9 Industry, innovation and infrastructure
Middlesex University ThemeCreativity, Culture & Enterprise
Conference4th International Conference on Emerging Trends in Electrical, Electronic and Communications Engineering (ELECOM)
Proceedings Title2022 4th International Conference on Emerging Trends in Electrical, Electronic and Communications Engineering (ELECOM)
ISBN
Electronic9781665466974
Electronic9781665466967
Paperback9781665466981
PublisherIEEE
Publication dates
Print22 Nov 2022
Online01 Dec 2022
Publication process dates
Deposited15 Dec 2022
Accepted15 Sep 2022
Output statusPublished
Accepted author manuscript
Copyright Statement

© 2022 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

Digital Object Identifier (DOI)https://doi.org/10.1109/elecom54934.2022.9965264
Web address (URL) of conference proceedingshttps://ieeexplore.ieee.org/xpl/conhome/9964478/proceeding
LanguageEnglish
Permalink -

https://repository.mdx.ac.uk/item/8q318

Log in to edit

Download files

Accepted author manuscript
SQLiComparison_Accepted.pdf

  • 53
    total views
  • 63
    total downloads
  • 0
    views this month
  • 0
    downloads this month

Export as

Related outputs

Blockchain based mobile-patient medical records management system
Soochit, S., Ramsurrun, V., Sharma, M., Veerabudren, K. and Seeam, A. 2024. Blockchain based mobile-patient medical records management system. Seeam, A., Ramsurrun, V., Juddoo, S. and Phokeer, A. (ed.) 6th International Conference on Innovations and Interdisciplinary Solutions for Underserved Areas. Flic en Flac, Mauritius 16 - 17 Sep 2023 Springer. pp. 99-112 https://doi.org/10.1007/978-3-031-51849-2_7
A mobile/tablet app-based patient records management system using blockchain
Rago, D., Ramsurrun, V., Sharma, M., Veerabudren, K. and Seeam, A. 2024. A mobile/tablet app-based patient records management system using blockchain. Seeam, A., Ramsurrun, V., Juddoo, S. and Phokeer, A. (ed.) 6th International Conference on Innovations and Interdisciplinary Solutions for Underserved Areas. Flic en Flac, Mauritius 16 - 17 Sep 2023 Springer. pp. 113-130 https://doi.org/10.1007/978-3-031-51849-2_8
Enhancing home security with pressure mat sensors: a multi-modal IoT approach
Veerabudren, K., Ramsurrun, V., Sharma, M. and Seeam, A. 2024. Enhancing home security with pressure mat sensors: a multi-modal IoT approach. Seeam, A., Ramsurrun, V., Juddoo, S. and Phokeer, A. (ed.) 6th International Conference on Innovations and Interdisciplinary Solutions for Underserved Areas. Flic en Flac, Mauritius 16 - 17 Sep 2023 Springer. https://doi.org/10.1007/978-3-031-51849-2_6
Detecting vulnerabilities in smart contract within blockchain: a review and comparative analysis of key approaches
Kissoon, Y. and Bekaroo, G. 2022. Detecting vulnerabilities in smart contract within blockchain: a review and comparative analysis of key approaches. 3rd International Conference on Next Generation Computing Applications (NextComp). Flic-en-Flac, Mauritius 06 - 08 Oct 2022 IEEE. pp. 1-6 https://doi.org/10.1109/nextcomp55567.2022.9932169
RaspiMonitor: a Raspberry Pi based smart home monitoring system
Sharma, M., Assotally, A. and Bekaroo, G. 2022. RaspiMonitor: a Raspberry Pi based smart home monitoring system. 3rd International Conference on Next Generation Computing Applications (NextComp). Flic-en-Flac, Mauritius 06 - 08 Oct 2022 IEEE. pp. 1-6 https://doi.org/10.1109/nextcomp55567.2022.9932198
A review and comparative analysis of vulnerability scanning tools for wireless LANs
Kejiou, A. and Bekaroo, G. 2022. A review and comparative analysis of vulnerability scanning tools for wireless LANs. 3rd International Conference on Next Generation Computing Applications (NextComp). Flic-en-Flac, Mauritius 06 - 08 Oct 2022 IEEE. pp. 1-6 https://doi.org/10.1109/nextcomp55567.2022.9932245
Impacts of sea-level rise on coastal zones of Mauritius: insights following calculation of a coastal vulnerability index
Beeharry, Y.D., Bekaroo, G., Bokhoree, C. and Phillips, M.R. 2022. Impacts of sea-level rise on coastal zones of Mauritius: insights following calculation of a coastal vulnerability index. Natural Hazards. 114 (1), pp. 27-55. https://doi.org/10.1007/s11069-022-05378-9
Enhancing student support via the application of a voice user interface system
Seeroo, O. and Bekaroo, G. 2021. Enhancing student support via the application of a voice user interface system. icARTi 2021. Virtual Event, Mauritius 09 - 10 Dec 2021 Association for Computing Machinery (ACM). pp. 1-6 https://doi.org/10.1145/3487923.3487936
An automated personal carbon footprint calculator for estimating carbon emissions from transportation use
Ajufo, C. and Bekaroo, G. 2021. An automated personal carbon footprint calculator for estimating carbon emissions from transportation use. icARTi 2021. Virtual Event, Mauritius 09 - 10 Dec 2021 Association for Computing Machinery (ACM). pp. 1-7 https://doi.org/10.1145/3487923.3487935
Calculating carbon emissions from personal travelling: insights from a top-down analysis of key calculators
Bekaroo, G., Roopowa, D., Zakari, A. and Niemeier, D. 2021. Calculating carbon emissions from personal travelling: insights from a top-down analysis of key calculators. Environmental Science and Pollution Research. 28 (7), pp. 8853-8872. https://doi.org/10.1007/s11356-020-11179-z
An evolutionary Multilayer Perceptron algorithm for real time river flood prediction
Suddul, G., Dookhitram, K., Bekaroo, G. and Shankhur, N. 2020. An evolutionary Multilayer Perceptron algorithm for real time river flood prediction. 2020 Zooming Innovation in Consumer Technologies Conference (ZINC). Novi Sad, Serbia 26 - 27 May 2020 IEEE. pp. 109-112 https://doi.org/10.1109/ZINC50678.2020.9161824
Low cost air quality monitoring: Comparing the energy consumption of an arduino against a raspberry Pi based system
Okigbo, C., Seeam, A., Guness, S., Bellekens, X., Bekaroo, G. and Ramsurrun, V. 2020. Low cost air quality monitoring: Comparing the energy consumption of an arduino against a raspberry Pi based system. Madhavje, K. and Soyjaudah, S. (ed.) ICONIC: 2020 International Conference on Intelligent and Innovative Computing Applications. Plaine Magnien, Mauritius 24 - 25 Sep 2020 Association for Computing Machinery (ACM). pp. 1-8 https://doi.org/10.1145/3415088.3415124
Application of augmented reality in aviation: Improving engagement of cabin crew during emergency procedures training
Gangabissoon, T., Bekaroo, G. and Moedeen, W. 2020. Application of augmented reality in aviation: Improving engagement of cabin crew during emergency procedures training. Madhavjee, K. and Soyjaudah, S. (ed.) ICONIC: 2020 International Conference on Intelligent and Innovative Computing Applications. Plaine Magnien, Mauritius 24 - 25 Sep 2020 Association for Computing Machinery (ACM). pp. 1-8 https://doi.org/10.1145/3415088.3415120
A smart fish feeding system for internet of things based aquariums
Auliar, R. and Bekaroo, G. 2020. A smart fish feeding system for internet of things based aquariums. Madhavjee, K. and Soyjauah, S. (ed.) ICONIC: 2020 International Conference on Intelligent and Innovative Computing Applications. Plaine Magnien, Mauritius 24 - 25 Sep 2020 Association for Computing Machinery (ACM). pp. 1-8 https://doi.org/10.1145/3415088.3415119
COVID-19 and The ICT industry: a mix of prospects and hurdles
Bekaroo, G. 2020. COVID-19 and The ICT industry: a mix of prospects and hurdles. Le Defi Media Group (Defimedia.info).
5G smart and innovative healthcare services: opportunities, challenges and prospective solutions
Bekaroo, G., Santokhee, A. and Augusto, J. 2020. 5G smart and innovative healthcare services: opportunities, challenges and prospective solutions. in: Bojkovic, Z., Milovanovic, D. and Fowdur, T. (ed.) 5G Multimedia Communication Technology, Multiservices, and Deployment Boca Raton CRC Press. pp. 279-297
Using tangible user interfaces for teaching concepts of internet of things: usability and learning effectiveness
Nathoo, A., Bekaroo, G., Gangabissoon, T. and Santokhee, A. 2020. Using tangible user interfaces for teaching concepts of internet of things: usability and learning effectiveness. Interactive Technology and Smart Education. 17 (2), pp. 133-158. https://doi.org/10.1108/ITSE-09-2019-0061
TangiNet: a tangible user interface system for teaching the properties of network cables
Gajadur, D. and Bekaroo, G. 2019. TangiNet: a tangible user interface system for teaching the properties of network cables. 2nd International Conference on Next Generation Computing Applications, NextComp 2019. Mauritius 19 - 21 Sep 2019 IEEE. pp. 1-6 https://doi.org/10.1109/NEXTCOMP.2019.8883538
Investigating personal carbon emissions of employees of higher education institutions: Insights from Mauritius
Bekaroo, G., Bokhoree, C., Ramsamy, P. and Moedeen, W. 2019. Investigating personal carbon emissions of employees of higher education institutions: Insights from Mauritius. Journal of Cleaner Production. 209, pp. 581-594. https://doi.org/10.1016/j.jclepro.2018.10.238
Going digital for diabetes management: the time is now
Bekaroo, G. 2019. Going digital for diabetes management: the time is now. Le Defi Media Group (Defimedia.info).
Improving effectiveness of honeypots: predicting targeted destination port numbers during attacks using J48 algorithm
Gangabissoon, T., Nathoo, A., Ramhith, R., Gopee, B. and Bekaroo, G. 2019. Improving effectiveness of honeypots: predicting targeted destination port numbers during attacks using J48 algorithm. Fleming, P., Lacquet, B.M., Sanei, S., Deb, K. and Jakobsson, A. (ed.) ELECOM 2018: 2nd International Conference on Emerging Trends in Electrical, Electronic and Communications Engineering. Mauritius 28 - 30 Nov 2018 Cham, Switzerland Springer. pp. 225-234 https://doi.org/10.1007/978-3-030-18240-3_21
Analyzing the prospects and acceptance of mobile-based marine debris tracking
Thanacoody, A., Bekaroo, G., Santokhee, A. and Juddoo, S. 2019. Analyzing the prospects and acceptance of mobile-based marine debris tracking. ELECOM 2018: 2nd International Conference on Emerging Trends in Electrical, Electronic and Communications Engineering. Mauritius 28 - 30 Nov 2018 Springer. pp. 256-267 https://doi.org/10.1007/978-3-030-18240-3_24
IPv4 and IPv6 protocols: a comparative performance study
Zakari, A., Musa, M., Bekaroo, G., Bala, S., Hashem, I. and Hakak, S. 2019. IPv4 and IPv6 protocols: a comparative performance study. ICSGRC 2019: 10th Control and System Graduate Research Colloquium . Shah Alam, Malaysia, Malaysia 02 - 03 Aug 2019 IEEE. pp. 1-4 https://doi.org/10.1109/icsgrc.2019.8837050
Mobile-based Carbon footprint calculation: insights from a usability study
Bekaroo, G., Roopowa, D. and Bokhoree, C. 2019. Mobile-based Carbon footprint calculation: insights from a usability study. 2nd International Conference on Next Generation Computing Applications, NextComp 2019. Mauritius 19 - 21 Sep 2019 IEEE. https://doi.org/10.1109/NEXTCOMP.2019.8883622
Hazard perception training and assessment of young drivers in Mauritius: investigating the acceptance of the MauHazard tool
Santokhee, A., Bekaroo, G. and Roopowa, D. 2019. Hazard perception training and assessment of young drivers in Mauritius: investigating the acceptance of the MauHazard tool. 2nd International Conference on Next Generation Computing Applications, NextComp 2019. Mauritius 19 - 21 Sep 2019 IEEE. https://doi.org/10.1109/NEXTCOMP.2019.8883629
AIML and sequence-to-sequence models to build artificial intelligence chatbots: insights from a comparative analysis
Teckchandani, N., Santokhee, A. and Bekaroo, G. 2019. AIML and sequence-to-sequence models to build artificial intelligence chatbots: insights from a comparative analysis. Second International Conference on Emerging Trends in Electrical, Electronic and Communications Engineering (ELECOM 2018). Mauritius 28 - 30 Nov 2018 Cham Springer. https://doi.org/10.1007/978-3-030-18240-3_30
Air quality monitoring in Mauritius
Towakel, P., Guness, S., Seeam, A., Bekaroo, G. and Bellekens, X. 2018. Air quality monitoring in Mauritius. 2018 International Conference on Intelligent and Innovative Computing Applications (ICONIC). Mon Tresor, Mauritius 06 - 07 Dec 2018 IEEE. pp. 1-5 https://doi.org/10.1109/ICONIC.2018.8601245
Cloud robotics platforms: review and comparative analysis
Dawarka, V. and Bekaroo, G. 2018. Cloud robotics platforms: review and comparative analysis. 2018 International Conference on Intelligent and Innovative Computing Applications (ICONIC). Mon Tresor, Mauritius 06 - 07 Dec 2018 IEEE. pp. 1-6 https://doi.org/10.1109/ICONIC.2018.8601220
Cloud robotic architectures: directions for future research from a comparative analysis
Dawarka, V. and Bekaroo, G. 2018. Cloud robotic architectures: directions for future research from a comparative analysis. 2018 International Conference on Intelligent and Innovative Computing Applications (ICONIC). Mon Tresor, Mauritius 06 - 07 Dec 2018 IEEE. pp. 1-7 https://doi.org/10.1109/iconic.2018.8601264
Enhancing awareness on green consumption of electronic devices: The application of Augmented Reality
Bekaroo, G., Sungkur, R., Ramsamy, P., Okolo, A. and Moedeen, W. 2018. Enhancing awareness on green consumption of electronic devices: The application of Augmented Reality. Sustainable Energy Technologies and Assessments. 30, pp. 279-291. https://doi.org/10.1016/j.seta.2018.10.016
Towards improving the security of low-interaction honeypots: insights from a comparative analysis
Zakari, A., Lawan, A.A. and Bekaroo, G. 2017. Towards improving the security of low-interaction honeypots: insights from a comparative analysis. Fleming, P., Vyas, N., Sanei, S. and Deb, K. (ed.) ELECOM 2016. Bagatelle, Mauritius 25 - 27 Nov 2016 Springer. pp. 314-321 https://doi.org/10.1007/978-3-319-52171-8_28
A hybrid three-phased approach in requirement elicitation
Zakari, A., Lawan, A.A. and Bekaroo, G. 2017. A hybrid three-phased approach in requirement elicitation. Fleming, P., Vyas, N., Sanei, S. and Deb, K. (ed.) ELECOM 2016. Bagatelle, Mauritius 25 - 27 Nov 2016 Springer. pp. 331-340 https://doi.org/10.1007/978-3-319-52171-8_30
Cam-Wallet: fingerprint-based authentication in M-wallets using embedded cameras
Okpara, O.S. and Bekaroo, G. 2017. Cam-Wallet: fingerprint-based authentication in M-wallets using embedded cameras. IEEE 17th EEEIC and IEEE 1st I&CPS Europe. Milan, Italy 06 - 09 Jun 2017 IEEE. pp. 1-5 https://doi.org/10.1109/eeeic.2017.7977654
JarPi: A low-cost raspberry pi based personal assistant for small-scale fishermen
Vora, M., Bekaroo, G., Santokhee, A., Juddoo, S. and Roopowa, D. 2017. JarPi: A low-cost raspberry pi based personal assistant for small-scale fishermen. IEEE 4th International Conference on Soft Computing and Machine Intelligence (ISCMI). Port Louis, Mauritius 23 - 24 Nov 2017 IEEE. pp. 159-163 https://doi.org/10.1109/iscmi.2017.8279618
Fruitify: Nutritionally augmenting fruits through markerless-based augmented reality
Kulpy, A. and Bekaroo, G. 2017. Fruitify: Nutritionally augmenting fruits through markerless-based augmented reality. IEEE 4th International Conference on Soft Computing and Machine Intelligence (ISCMI). Port Louis, Mauritius 23 - 24 Nov 2017 IEEE. pp. 149-153 https://doi.org/10.1109/iscmi.2017.8279616
Exploring the application and usability of NFC for promoting self-learning on energy consumption of household electronic appliances
Ramrecha, V., Bekaroo, G., Santokhee, A. and Juddoo, S. 2017. Exploring the application and usability of NFC for promoting self-learning on energy consumption of household electronic appliances. IEEE 4th International Conference on Soft Computing and Machine Intelligence (ISCMI). Port Louis, Mauritius 23 - 24 Nov 2017 IEEE. pp. 154-158 https://doi.org/10.1109/ISCMI.2017.8279617
Sustaining anti-littering behavior within coastal and marine environments: through the macro-micro level lenses
Beeharry, Y.D., Bekaroo, G., Bokhoree, C., Phillips, M.R. and Jory, N. 2017. Sustaining anti-littering behavior within coastal and marine environments: through the macro-micro level lenses. Marine Pollution Bulletin. 119 (2), pp. 87-99. https://doi.org/10.1016/j.marpolbul.2017.04.029
Self-tuning flowcharts: a priority-based approach to optimize diagnostic flowcharts
Bekaroo, G. and Warren, P. 2016. Self-tuning flowcharts: a priority-based approach to optimize diagnostic flowcharts. 2016 IEEE International Conference on Emerging Technologies and Innovative Business Practices for the Transformation of Societies (EmergiTech). Balaclava, Mauritius 03 - 06 Aug 2016 IEEE. pp. 279-285 https://doi.org/10.1109/emergitech.2016.7737352
Power consumption of the Raspberry Pi: A comparative analysis
Bekaroo, G. and Santokhee, A. 2016. Power consumption of the Raspberry Pi: A comparative analysis. 2016 IEEE International Conference on Emerging Technologies and Innovative Business Practices for the Transformation of Societies (EmergiTech). Balaclava, Mauritius 03 - 06 Aug 2016 IEEE. pp. 361-366 https://doi.org/10.1109/emergitech.2016.7737367
Improving wireless charging energy efficiency of mobile phones: analysis of key practices
Bekaroo, G. and Seeam, A. 2016. Improving wireless charging energy efficiency of mobile phones: analysis of key practices. 2016 IEEE International Conference on Emerging Technologies and Innovative Business Practices for the Transformation of Societies (EmergiTech). Balaclava, Mauritius 03 - 06 Aug 2016 Institute of Electrical and Electronics Engineers (IEEE). pp. 357-360 https://doi.org/10.1109/emergitech.2016.7737366
Impacts of ICT on the natural ecosystem: A grassroot analysis for promoting socio-environmental sustainability
Bekaroo, G., Bokhoree, C. and Pattinson, C. 2016. Impacts of ICT on the natural ecosystem: A grassroot analysis for promoting socio-environmental sustainability. Renewable and Sustainable Energy Reviews. 57, pp. 1580-1595. https://doi.org/10.1016/j.rser.2015.12.147
Personal carbon footprint reduction: ICT as a key enabler
Bekaroo, G., Moedeen, W., Bokhoree, C. and Ramsamy, P. 2015. Personal carbon footprint reduction: ICT as a key enabler. 3rd International Conference on Emerging Research Paradigms in Business and Social Sciences. Dubai, UAE 24 - 26 Nov 2015
Green cryptography: energy performance optimization of 3DES
Musumhiri, M., Bekaroo, G. and Ramsurrun, V. 2015. Green cryptography: energy performance optimization of 3DES. 3rd International Conference on Emerging Research Paradigms in Business and Social Sciences. Dubai, UAE 24 - 26 Nov 2015 pp. 554-558
Computer power management awareness: an insight from youngsters in Mauritius
Bekaroo, G., Akhal, S., Padaruth, D., Bokhoree, C. and Pattinson, C. 2012. Computer power management awareness: an insight from youngsters in Mauritius. Arabnia, H., Gravvanis, G. and Solo, A. (ed.) International Conference on Foundation of Computer Science (FCS'12), The 2012 World Congress in Computer Science (WorldComp 2012). Las Vegas 16 - 19 Jul 2012 CSREA Press. pp. 120-126
Towards emerging green information and communication technologies: a review
Bekaroo, G. and Bokhoree, C. 2011. Towards emerging green information and communication technologies: a review. The 2011 International Conference on Information and Knowledge Engineering (IKE'11) Conference. Las Vegas, U.S. 18 - 21 Jul 2011