@inproceedings{1d36460f42bb48debb4c253f45beb71d,
title = "Moving Target Defense in Preventing SQL Injection",
abstract = "The database stores important information about the user, which make it a core part of the website. Therefore, database injection has become a serious cyber-attack. Traditional database injection defenses are passive defenses, which cannot detect new vulnerability before it is exposed. The Moving Target Defense (MTD) method that emerged in recent years has become a breakthrough to solve this problem. This paper mainly establishes the model to verify the possibility of dynamic defense application in database injection defense. This paper first introduces the related concepts SQLI and MTD, then we build models to compare the attack surface of the traditional static defense model and MTD one. It is concluded that with certain conditions, the dynamic defense model has a smaller attack surface, which indicate stronger defense ability.",
keywords = "Container, Moving target defense, SQL injection",
author = "Kaiyu Feng and Xiao Gu and Wei Peng and Dequan Yang",
note = "Publisher Copyright: {\textcopyright} 2019, Springer Nature Switzerland AG.; 5th International Conference on Artificial Intelligence and Security, ICAIS 2019 ; Conference date: 26-07-2019 Through 28-07-2019",
year = "2019",
doi = "10.1007/978-3-030-24268-8_3",
language = "English",
isbn = "9783030242671",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "25--34",
editor = "Xingming Sun and Zhaoqing Pan and Elisa Bertino",
booktitle = "Artificial Intelligence and Security - 5th International Conference, ICAIS 2019, Proceedings",
address = "Germany",
}