{"created":"2025-01-18T23:31:19.873541+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00073249","sets":["1164:3925:6360:6361"]},"path":["6361"],"owner":"10","recid":"73249","title":["文字単位の特徴抽出によるSQLインジェクション攻撃検出法について"],"pubdate":{"attribute_name":"公開日","attribute_value":"2011-03-03"},"_buckets":{"deposit":"3f967e79-5f33-4363-a15b-3152eb1543c3"},"_deposit":{"id":"73249","pid":{"type":"depid","value":"73249","revision_id":0},"owners":[10],"status":"published","created_by":10},"item_title":"文字単位の特徴抽出によるSQLインジェクション攻撃検出法について","author_link":["0","0"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"文字単位の特徴抽出によるSQLインジェクション攻撃検出法について"},{"subitem_title":"On the Automatic Detection of the SQL Injection Attacks by the Feature Extraction of the Single Character","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"クラウドとセキュリティ","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2011-03-03","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"サイバー大学IT総合学部"},{"subitem_text_value":"サイバー大学IT総合学部"},{"subitem_text_value":"サイバー大学IT総合学部"},{"subitem_text_value":"サイバー大学IT総合学部"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Faculty of Information Technology and Business, Cyber University","subitem_text_language":"en"},{"subitem_text_value":"Faculty of Information Technology and Business, Cyber University","subitem_text_language":"en"},{"subitem_text_value":"Faculty of Information Technology and Business, Cyber University","subitem_text_language":"en"},{"subitem_text_value":"Faculty of Information Technology and Business, Cyber University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/73249/files/IPSJ-CSEC11052049.pdf"},"date":[{"dateType":"Available","dateValue":"2013-03-03"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-CSEC11052049.pdf","filesize":[{"value":"447.2 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"f8f1f4ef-5085-495d-b49a-31823cd637bf","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2011 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"園田, 道夫"},{"creatorName":"松田, 健"},{"creatorName":"小泉, 大城"},{"creatorName":"平澤, 茂一"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Michio, Sonoda","creatorNameLang":"en"},{"creatorName":"Takeshi, Matsuda","creatorNameLang":"en"},{"creatorName":"Daiki, Koizumi","creatorNameLang":"en"},{"creatorName":"Shigeichi, Hirasawa","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA11235941","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"従来の研究においては，SQL インジェクション攻撃の検出は構文解析や過去の攻撃手法をブラックリスト化したものが広く使われている．しかし，これらのアプローチでは，多様化する攻撃の偽装工作への対応が困難になってきている．そこで本研究では，入力文字列のサンプルとして攻撃と正常の二種類用意した．そして，攻撃を特徴づける文字が入力された文字列の中に占める割合をもとに両方の誤検出率を小さくし, かつ高速なアルゴリズムを提案し，評価を行った．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"In the conventional study, the parsing and the blacklist of the past attack methods are widely used in the detection of the SQL injection attack. However, the diversified camouflage technique makes detecting attacks difficult in such approaches. Then, in our study, we prepared the attack strings group and the normality strings group as samples of the input string, and we proposed high-speed algorithm, based on the ratio that occupied it to the character string where the character that characterize the attack was input, to reduce both misdetection rates, and we evaluated it.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"7","bibliographic_titles":[{"bibliographic_title":"研究報告コンピュータセキュリティ（CSEC）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2011-03-03","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"49","bibliographicVolumeNumber":"2011-CSEC-52"}]},"relation_version_is_last":true,"weko_creator_id":"10"},"id":73249,"updated":"2025-01-21T22:00:29.758956+00:00","links":{}}