UPM Institutional Repository

Application of machine learning and artificial intelligence in detecting SQL injection attacks


Citation

Md Sultan, Abu Bakar and Agiliga, Nwabudike Augustine and Osman, Mohd Hafeez Bin and Sharif, Khaironi Yatim (2024) Application of machine learning and artificial intelligence in detecting SQL injection attacks. International Journal on Advanced Science, Engineering and Information Technology, 8 (4). pp. 2131-2138. ISSN 2088-5334; eISSN: 2460-6952

Abstract

More recently, cyber-attacks have also been on the rise and SQL injection attacks are some of major threats to data security. AI and machine learning have come a long way, however their usage in cybersecurity is still somewhat nascent. The main aim of this work is focusing on solving the IT-related challenge lack-of-adequate knowledge bases and tools for security practitioners to monitor and mitigate SQL Injection attacks with AI/ML techniques. The study uses a mixed-methods approach to evaluate how well different AI and ML algorithms identify SQL injection attacks by combining algorithmic evaluation with empirical investigation. Datasets of well-known SQL injection attack patterns and AI/ML models intended for cybersecurity anomaly detection are among the resources underexplored, these findings show the potential for boosting detection capabilities by deploying ML and AI-based security solutions, with some algorithms scoring up to an 80 percent success rate in identifying SQL injections. But while the tool usage seems to be effective three-quarters of survey respondents reported less bad stuff getting through, with a similar number able to get more done in less time as security researchers or incident response practitioners on top of that adoption among cybersecurity pros was below 30%, demonstrating an opportunity gap between what could leverage and folks actually using it. This will help lay a groundwork for future work in terms of identifying the best solutions and providing potential approaches to incorporating AI/ML into cybersecurity frameworks. The implications of this study indicate that the adoption robust defenses against SQL injection and other cyber threats could increase many folds if we can continue to research and implement AI ML technologies.


Download File

[img] Text
118126.pdf - Published Version
Available under License Creative Commons Attribution Share Alike.
Download (3MB)
Official URL or Download Paper: https://joiv.org/index.php/joiv/article/view/3631

Additional Metadata

Item Type: Article
Divisions: Faculty of Computer Science and Information Technology
DOI Number: https://doi.org/10.62527/joiv.8.4.3631
Publisher: Indonesian Society for Knowledge and Human Development
Keywords: SQL injection; Machine learning; Artificial intelligence; Cybersecurity; SQL injection attack
Depositing User: Ms. Che Wa Zakaria
Date Deposited: 25 Jun 2025 23:49
Last Modified: 25 Jun 2025 23:49
Altmetrics: http://www.altmetric.com/details.php?domain=psasir.upm.edu.my&doi=10.62527/joiv.8.4.3631
URI: http://psasir.upm.edu.my/id/eprint/118126
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item