Acceso al sitio web del Consejo de Políticas de Infraestructura
REVISTA
Future Internet

   
Inicio  /  Future Internet  /  Vol: 15 Par: 5 (2023)  /  Artículo
ARTÍCULO
TITULO

Toward an SDN-Based Web Application Firewall: Defending against SQL Injection Attacks

Fahad M. Alotaibi and Vassilios G. Vassilakis    

Resumen

Web attacks pose a significant threat to enterprises, as attackers often target web applications first. Various solutions have been proposed to mitigate and reduce the severity of these threats, such as web application firewalls (WAFs). On the other hand, software-defined networking (SDN) technology has significantly improved network management and operation by providing centralized control for network administrators. In this work, we investigated the possibility of using SDN to implement a firewall capable of detecting and blocking web attacks. As a proof of concept, we designed and implemented a WAF to detect a known web attack, specifically SQL injection. Our design utilized two detection methods: signatures and regular expressions. The experimental results demonstrate that the SDN controller can successfully function as a WAF and detect SQL injection attacks. Furthermore, we implemented and compared ModSecurity, a traditional WAF, with our proposed SDN-based WAF. The results reveal that our system is more efficient in terms of TCP ACK latency, while ModSecurity exhibits a slightly lower overhead on the controller.

PÁGINAS
pp. 0 - 0
MATERIAS
INFRAESTRUCTURA
REVISTAS SIMILARES
Water
Buildings
Infrastructures

 Artículos similares

       
 
Håkon Harnes and Donn Morrison    
WebAssembly is a low-level bytecode language that enables high-level languages like C, C++, and Rust to be executed in the browser at near-native performance. In recent years, WebAssembly has gained widespread adoption and is now natively supported by al... ver más
Revista: Future Internet

 
Kang-Ren Leow, Meng-Chew Leow and Lee-Yeng Ong    
The Online Roadshow, a new type of web application, is a digital marketing approach that aims to maximize contactless business engagement. It leverages web computing to conduct interactive game sessions via the internet. As a result, massive amounts of p... ver más

 
Petra Justová and Jirí Cajthaml    
On the example of our project on the creation of the historical web atlas on Czech history, we introduce the process of adapting originally printed historical maps for their presentation in the web environment, which overcomes the shortcomings of standar... ver más

 
Fahim Sufi    
The surge in cybercrime has emerged as a pressing concern in contemporary society due to its far-reaching financial, social, and psychological repercussions on individuals. Beyond inflicting monetary losses, cyber-attacks exert adverse effects on the soc... ver más
Revista: Future Internet

 
Arthur F. F. Gomes, Leonardo C. Mesquita, Edson F. C. Rodrigues, Felipe N. Arroyo, Vinícius B. M. Aquino, Herisson F. Santos, Túlio H. Panzera, Francisco A. R. Lahr, Eduardo Chahud, Luis A. M. N. Branco and André L. Christoforo    
Recently, castellated columns have been increasingly used in buildings because of their flexibility, easy compatibility and potential savings due to less steel consumption. However, there is a lack of research related to the subject. In view of that, thi... ver más
Revista: Buildings