• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)
Menu

SQL Injection Detection Method Based on Multi-Dimensional Feature Modeling and Deep Learning

Vol. 20, No. 1, January 31, 2026
10.3837/tiis.2026.01.021, Download Paper (Free):

Abstract

Structured Query Language (SQL) injection attacks remain among the most severe and prevalent cybersecurity threats, which enable attackers to manipulate databases, disclose sensitive information, and even compromise entire systems. To address the limitations of feature representation and generalization about existing detection approaches, this study proposes an SQL injection detection method based on multi-dimensional numerical feature modeling and deep learning. Firstly, this method provides a detailed fine-grained segmentation of SQL injection categories for the first time, such as stacked query injection and boolean-based blind injection. Next, a comprehensive feature system with multiple perspectives is constructed to capture diverse query behaviors. And this system includes character distribution, syntactic structure, keyword usage, and function invocation. Then, multiple feature optimization strategies, such as Recursive Feature Elimination (RFE), Recursive Feature Addition (RFA), Random Forest Feature Importance (RF-FI), and Autoencoder-based compression, are integrated to enhance model efficiency and robustness. Finally, based on a combined dataset of 188,363 SQL queries, experimental results demonstrate that the proposed method achieves substantial improvements over existing baseline algorithms. Specifically, under the binary classification task, the best-performing model (RFA-DNN) attains an accuracy of 97.99%, a precision of 98.91%, a recall of 98.17%, and an F1-score of 98.53%, which surpasses the baseline GWO model by more than 21.3% in F1-score. For the multi-class task, the proposed approach achieves a macro F1-score of 94.56% using only 50% of the original feature dimensions. These results verify the superior detection accuracy, robustness, and scalability, and this method provides an effective and generalizable solution for real-world SQL injection defense.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
S. Wang, X. Liu, H. Liu, C. Zhao, J. Ding, "SQL Injection Detection Method Based on Multi-Dimensional Feature Modeling and Deep Learning," KSII Transactions on Internet and Information Systems, vol. 20, no. 1, pp. 482-502, 2026. DOI: 10.3837/tiis.2026.01.021.

[ACM Style]
Shuai Wang, Xinqian Liu, Huixue Liu, Chuan Zhao, and Jianguo Ding. 2026. SQL Injection Detection Method Based on Multi-Dimensional Feature Modeling and Deep Learning. KSII Transactions on Internet and Information Systems, 20, 1, (2026), 482-502. DOI: 10.3837/tiis.2026.01.021.

[BibTeX Style]
@article{tiis:105666, title="SQL Injection Detection Method Based on Multi-Dimensional Feature Modeling and Deep Learning", author="Shuai Wang and Xinqian Liu and Huixue Liu and Chuan Zhao and Jianguo Ding and ", journal="KSII Transactions on Internet and Information Systems", DOI={10.3837/tiis.2026.01.021}, volume={20}, number={1}, year="2026", month={January}, pages={482-502}}

Unified Search
(in title, author, abstract, and keywords)

Category Search

KSII Transactions on Internet and Information Systems
© 2007~Present, KSII. All Rights Reserved.