Toward an SDN-Based Web Application Firewall: Defending against SQL Injection Attacks-Reference-Cited by-同舟云学术

Toward an SDN-Based Web Application Firewall: Defending against SQL Injection Attacks

Published:2023-04-29 Issue:5 Volume:15 Page:170
ISSN:1999-5903
Container-title:Future Internet
language:en
Short-container-title:Future Internet

Author:

Alotaibi Fahad M.¹²^ORCID,Vassilakis Vassilios G.³^ORCID

Affiliation:

1. Department of Computing, Imperial College London, London SW7 2BX, UK

2. College of Science and Arts Sharoura, Najran University, Najran 66446, Saudi Arabia

3. Department of Computer Science, University of York, York YO10 5GH, UK

Abstract

Web attacks pose a significant threat to enterprises, as attackers often target web applications first. Various solutions have been proposed to mitigate and reduce the severity of these threats, such as web application firewalls (WAFs). On the other hand, software-defined networking (SDN) technology has significantly improved network management and operation by providing centralized control for network administrators. In this work, we investigated the possibility of using SDN to implement a firewall capable of detecting and blocking web attacks. As a proof of concept, we designed and implemented a WAF to detect a known web attack, specifically SQL injection. Our design utilized two detection methods: signatures and regular expressions. The experimental results demonstrate that the SDN controller can successfully function as a WAF and detect SQL injection attacks. Furthermore, we implemented and compared ModSecurity, a traditional WAF, with our proposed SDN-based WAF. The results reveal that our system is more efficient in terms of TCP ACK latency, while ModSecurity exhibits a slightly lower overhead on the controller.

Publisher

MDPI AG

Subject

Computer Networks and Communications

Link

https://www.mdpi.com/1999-5903/15/5/170/pdf

Reference39 articles.

1. Armstrong, M. (2023, February 25). How Many Websites Are There?. Available online: https://www.statista.com/chart/19058/how-many-websites-are-there/.

2. NetCraft (2023, February 25). October 2022 Web Server Survey. October. Available online: https://news.netcraft.com/archives/category/web-server-survey/.

3. OWASP (2023, February 25). Top Ten Web Application Security Risks. Available online: https://owasp.org/www-project-top-ten/.

4. SpiderLabs (2023, February 25). ModSecurity. Available online: https://github.com/SpiderLabs/ModSecurity.

5. FortiWeb (2023, February 25). Web Application Firewall (WAF). Available online: https://www.fortinet.com/products/web-application-firewall/fortiweb.

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Analysis of SQL injection attacks in the cloud and in WEB applications;SECURITY AND PRIVACY;2024-01-18

2. Augmenting SQL Injection Attack Detection via Deep Convolutional Neural Network;2024-01-12

3. Beyond the Basics: A Study of Advanced Techniques for Detecting and Preventing SQL Injection Attacks;2023 4th International Conference on Smart Electronics and Communication (ICOSEC);2023-09-20

4. On the (in)Security of the Control Plane of SDN Architecture: A Survey;IEEE Access;2023