Database protection method and system based on SQL signature
The invention discloses a database protection method and system based on an SQL signature, and the method comprises the steps: S1, building a database security proxy gateway between an application service and a database service, receiving a database access request from an application through the dat...
Gespeichert in:
Hauptverfasser: | , , , , |
---|---|
Format: | Patent |
Sprache: | chi ; eng |
Schlagworte: | |
Online-Zugang: | Volltext bestellen |
Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
container_end_page | |
---|---|
container_issue | |
container_start_page | |
container_title | |
container_volume | |
creator | YE JINGHONG CUI SHUNYAN CHEN CHAO ZHUANG SHUQI SUN ZONGJIN |
description | The invention discloses a database protection method and system based on an SQL signature, and the method comprises the steps: S1, building a database security proxy gateway between an application service and a database service, receiving a database access request from an application through the database security proxy gateway, and extracting an SQL statement; s2, analyzing the extracted SQL statements, constructing an AST syntax tree of the SQL statements, explaining semantic features, extracting SQL fingerprints to generate SQL signatures, and constructing a legal signature library; and S3, comparing the SQL signatures of the database access requests by using the constructed signature library, and blocking illegal requests which are not in the legal signature library. A defense strategy is implemented in a white list mode, on one hand, the problem that attack injection is carried out by changing a grammar structure through vulnerabilities is eliminated, and normal access behaviors of application services ar |
format | Patent |
fullrecord | <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN114444122A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN114444122A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN114444122A3</originalsourceid><addsrcrecordid>eNrjZLBxSSxJTEosTlUoKMovSU0uyczPU8hNLcnIT1FIzEtRKK4sLknNVQCpSFEASgUH-igUZ6bnJZaUFqXyMLCmJeYUp_JCaW4GRTfXEGcP3dSC_PjU4oLE5NS81JJ4Zz9DQxMgMDQycjQmRg0AxdgvZA</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Database protection method and system based on SQL signature</title><source>esp@cenet</source><creator>YE JINGHONG ; CUI SHUNYAN ; CHEN CHAO ; ZHUANG SHUQI ; SUN ZONGJIN</creator><creatorcontrib>YE JINGHONG ; CUI SHUNYAN ; CHEN CHAO ; ZHUANG SHUQI ; SUN ZONGJIN</creatorcontrib><description>The invention discloses a database protection method and system based on an SQL signature, and the method comprises the steps: S1, building a database security proxy gateway between an application service and a database service, receiving a database access request from an application through the database security proxy gateway, and extracting an SQL statement; s2, analyzing the extracted SQL statements, constructing an AST syntax tree of the SQL statements, explaining semantic features, extracting SQL fingerprints to generate SQL signatures, and constructing a legal signature library; and S3, comparing the SQL signatures of the database access requests by using the constructed signature library, and blocking illegal requests which are not in the legal signature library. A defense strategy is implemented in a white list mode, on one hand, the problem that attack injection is carried out by changing a grammar structure through vulnerabilities is eliminated, and normal access behaviors of application services ar</description><language>chi ; eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC DIGITAL DATA PROCESSING ; PHYSICS</subject><creationdate>2022</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20220506&DB=EPODOC&CC=CN&NR=114444122A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20220506&DB=EPODOC&CC=CN&NR=114444122A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>YE JINGHONG</creatorcontrib><creatorcontrib>CUI SHUNYAN</creatorcontrib><creatorcontrib>CHEN CHAO</creatorcontrib><creatorcontrib>ZHUANG SHUQI</creatorcontrib><creatorcontrib>SUN ZONGJIN</creatorcontrib><title>Database protection method and system based on SQL signature</title><description>The invention discloses a database protection method and system based on an SQL signature, and the method comprises the steps: S1, building a database security proxy gateway between an application service and a database service, receiving a database access request from an application through the database security proxy gateway, and extracting an SQL statement; s2, analyzing the extracted SQL statements, constructing an AST syntax tree of the SQL statements, explaining semantic features, extracting SQL fingerprints to generate SQL signatures, and constructing a legal signature library; and S3, comparing the SQL signatures of the database access requests by using the constructed signature library, and blocking illegal requests which are not in the legal signature library. A defense strategy is implemented in a white list mode, on one hand, the problem that attack injection is carried out by changing a grammar structure through vulnerabilities is eliminated, and normal access behaviors of application services ar</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>PHYSICS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2022</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZLBxSSxJTEosTlUoKMovSU0uyczPU8hNLcnIT1FIzEtRKK4sLknNVQCpSFEASgUH-igUZ6bnJZaUFqXyMLCmJeYUp_JCaW4GRTfXEGcP3dSC_PjU4oLE5NS81JJ4Zz9DQxMgMDQycjQmRg0AxdgvZA</recordid><startdate>20220506</startdate><enddate>20220506</enddate><creator>YE JINGHONG</creator><creator>CUI SHUNYAN</creator><creator>CHEN CHAO</creator><creator>ZHUANG SHUQI</creator><creator>SUN ZONGJIN</creator><scope>EVB</scope></search><sort><creationdate>20220506</creationdate><title>Database protection method and system based on SQL signature</title><author>YE JINGHONG ; CUI SHUNYAN ; CHEN CHAO ; ZHUANG SHUQI ; SUN ZONGJIN</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN114444122A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2022</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>PHYSICS</topic><toplevel>online_resources</toplevel><creatorcontrib>YE JINGHONG</creatorcontrib><creatorcontrib>CUI SHUNYAN</creatorcontrib><creatorcontrib>CHEN CHAO</creatorcontrib><creatorcontrib>ZHUANG SHUQI</creatorcontrib><creatorcontrib>SUN ZONGJIN</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>YE JINGHONG</au><au>CUI SHUNYAN</au><au>CHEN CHAO</au><au>ZHUANG SHUQI</au><au>SUN ZONGJIN</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Database protection method and system based on SQL signature</title><date>2022-05-06</date><risdate>2022</risdate><abstract>The invention discloses a database protection method and system based on an SQL signature, and the method comprises the steps: S1, building a database security proxy gateway between an application service and a database service, receiving a database access request from an application through the database security proxy gateway, and extracting an SQL statement; s2, analyzing the extracted SQL statements, constructing an AST syntax tree of the SQL statements, explaining semantic features, extracting SQL fingerprints to generate SQL signatures, and constructing a legal signature library; and S3, comparing the SQL signatures of the database access requests by using the constructed signature library, and blocking illegal requests which are not in the legal signature library. A defense strategy is implemented in a white list mode, on one hand, the problem that attack injection is carried out by changing a grammar structure through vulnerabilities is eliminated, and normal access behaviors of application services ar</abstract><oa>free_for_read</oa></addata></record> |
fulltext | fulltext_linktorsrc |
identifier | |
ispartof | |
issn | |
language | chi ; eng |
recordid | cdi_epo_espacenet_CN114444122A |
source | esp@cenet |
subjects | CALCULATING COMPUTING COUNTING ELECTRIC DIGITAL DATA PROCESSING PHYSICS |
title | Database protection method and system based on SQL signature |
url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-22T15%3A08%3A56IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=YE%20JINGHONG&rft.date=2022-05-06&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN114444122A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |