Method for Detecting Structured Query Language (SQL) Injection Based on Big Data Algorithm

摘要

The present invention discloses a method for detecting Structured Query Language (SQL) injection based on a big data algorithm. According to the method, by simulating an attack, extracting a great number of SQL injection statements, performing a series of word segmentation and URL character conversion, and performing cross verification and learning, a training set of a naive Bayes algorithm is constructed; network audit data is processed by characteristic engineering and then substituted into the algorithm, so that a result for detecting the SQL injection is obtained; and furthermore, a business expert may make a further confirmation on the result to store the statement, which is confirmed as the SQL injection, to the training set again, so that the training set is increasingly rich, the identification accuracy is gradually increased, and the false alarm rate and the alarm leakage rate are gradually decreased.