IoT-Driven in the Banking Application Platforms Using a Real-Time SQL Injection Mitigative Measures
DOI:
https://doi.org/10.51903/jtie.v5i1.481Keywords:
Intelligent Threat Detection, IoT-Driven Banking Platform, Real-Time SQL Injection.Abstract
The Internet of Things (IoT) integration into banking systems has revolutionized banking operations while also posing threats, including SQL injection (SQLi) attacks. Thus, the defenses of the existing system, such as access control mechanisms, firewalls, and signature-based Intrusion Detection Systems (IDSs), failed to detect both novel and obfuscated SQLi attempts. Hence, this research developed a machine-learning-based detection framework capable of identifying SQLi attacks on IoT-driven banking platforms. The model was trained on a Random Forest (RF) classifier and evaluated in a Python environment. Streamlit was used to deploy the model for real-time prediction, while performance visualization was through the Power BI dashboard. However, the results from the model’s evaluation were highly impressive, with 99.53% accuracy, 99.96% precision, and 98.78% recall. This demonstrated the model's ability to detect both known and unknown SQL patterns. However, the research concluded that combining behavioural analytics with a machine-learning approach is highly effective for securing IoT banking platforms and recommended periodic retraining using a deep-learning approach.References
AbouGrad, H., & Sankuru, L. (2025). Online Banking Fraud Detection Model: Decentralized Machine Learning Framework to Enhance Effectiveness and Compliance With Data Privacy Regulations. Mathematics, 13(13), 2110. https://doi.org/10.3390/math13132110
Ajayi, A. M., Omokanye, A. O., Olowu, O., Adeleye, A. O., Omole, O. M., & Wada, I. U. (2024). Detecting Insider Threats in Banking Using AI-Driven Anomaly Detection with a Data Science Approach to Cybersecurity. International Journal of Advanced Computer Science and Applications, 15(6), 1097–1106. https://doi.org/10.14569/ijacsa.2024.01506116
Al-Olaqi, M., Al-Gailani, A., & Rahman, M. M. H. (2025). Comprehensive Study of SQL Injection Attacks Mitigation Methods and Future Directions. Journal of Cyber Security and Risk Auditing, 2025(4), 347–365. https://doi.org/10.63180/jcsra.thestap.2025.4.11
Aurna, N. F., Hossain, D., Ochiai, H., Taenaka, Y., & Khan, L. (2024). Banking Malware Detection: Leveraging Federated Learning with Conditional Model Updates and Client Data Heterogeneity. Proceedings of the International Conference on Information Systems Security and Privacy (ICISSP), 309–319. https://doi.org/10.5220/0012409700003648
Demilie, W. B., & Deriba, F. G. (2022). Detection and Prevention of SQLI Attacks and Developing Compressive Framework Using Machine Learning and Hybrid Techniques. Journal of Big Data, 9, 148. https://doi.org/10.1186/s40537-022-00678-0
Eduardo, C. E. C. G. (2024). Branchless Banking: The Role of Fintech Technologies and the Internet of Things (IoT) in the Disruption of the Traditional Banking Model. International Journal of Multidisciplinary Research and Growth Evaluation, 5(5), 586–591. https://doi.org/10.54660/.ijmrge.2024.5.5.586-591
George, Z. H., & Hasan, T. (2025). Assessing the Influence of Cybersecurity Threats and Risks on the Adoption and Growth of Digital Banking: A Systematic Review. Finance and Banking Review, 1(1), 226–257. https://doi.org/10.63125/fh49gz18
Gottipati, K. C. (2024). 5G Driven IoT in Banking: Revolutionizing Real Time Transaction Processing. International Journal of Fintech (IJFT), 3(1), 1–14. https://doi.org/10.5281/zenodo.14258588
Hartono, B., Silalahi, F. D., & Muthohir, M. (2024). Transformers in Cybersecurity: Advancing Threat Detection and Response Through Machine Learning Architectures. Journal of Technology Informatics and Engineering, 3(3), 382–396. doi:10.51903/jtie.v3i3.211
Hidayat, M. S., Aziz, F., & Mansur, R. (2025). Digital Ethics and AI Transparency: Comparative Analysis of AI Recommendation Systems Across E-Commerce Platforms. Journal of Management and Informatics, 4(1), 178–199. doi:10.51903/jmi.v4i1.178
Kakolu, S., Faheem, M. A., & Aslam, M. (2023). AI Enabled Intrusion Detection Systems in IoT Networks: Advancing Defense Mechanisms for Resource Constrained Devices. International Journal of Science and Research Archive, 9(1), 752–769. https://doi.org/10.30574/ijsra.2023.9.1.0316
Kariuki, P., Oluwatoyin, L., Lauda, M., & Goyayi, J. (2025). Internet of Things on Banking Processes in South Africa : A Systematic Reflection on Innovations, Opportunities and Challenges. Digital Business, 5(1), 100097. https://doi.org/10.1016/j.digbus.2024.100097
Kumbhar, S. B., Mundkar, N. K., Ohol, A. A., Patel, G. A., & Dhanake, S. A. (2024). Enhancing Financial Security An Intrusion Detection Approach. International Journal of Novel Research and Development, 9(5), b535–b540. https://ijnrd.org/papers/IJNRD2405168.pdf
Li, X., Wang, Q., Fan, C., Zhan, W., & Zhang, M. (2024). A New Malicious Code Classification Method for the Security of Financial Software. Computer Systems Science and Engineering, 48(3), 773–792. https://doi.org/10.32604/csse.2024.039849
Mustapha, A. A., Udeh, A. S., Ashi, T. A., Sobowale, O. S., Akinwande, M. J., & Oteniara, A. O. (2024). Comprehensive Review of Machine Learning Models for SQL Injection Detection in E Commerce. World Journal of Advanced Research and Reviews, 23(1), 451–465. https://doi.org/10.30574/wjarr.2024.23.1.2004
Ogun, J. O. (2024). Advancements in Automated Malware Analysis: Evaluating the Efficacy of Open Source Tools in Detecting and Mitigating Emerging Malware Threats to US Businesses. International Journal of Science and Research Archive, 12(2), 1958–1964. https://doi.org/10.30574/ijsra.2024.12.2.1488
Poongodi, E., Mahesh, P., Venkatesh, P., & Venkateshwarlu, R. (2025). Fraud Detection in Banking Data Using Machine Learning. Journal of Engineering Sciences, 16(05), 653–659. https://doi.org/10.36893/jes.2025.v16i05.070
Pratama, A., & Nugroho, B. (2025). Effectiveness and Reliability of Artificial Intelligence in Fraud Detection: A Mixed-Method Study on Financial Audit. Journal of Management and Informatics, 4(1), 168–185. doi:10.51903/jmi.v4i1.168
Sathupadi, K., Achar, S., Bhaskaran, S. V., & Faruqui, N. (2025). BankNet: Real Time Big Data Analytics for Secure Internet Banking. Big Data and Cognitive Computing, 9(2), 24. https://doi.org/10.3390/bdcc9020024
Sumarlin, T., & Qosidah, N. (2025). Optimizing Sales and Inventory Management With Machine Learning: Applications of Neural Networks and Random Forest. Journal of Management and Informatics, 4(2), 35–48. doi:10.51903/jmi.v4i2.35
Supriadi, C., Wahyudi, W., & Priyadi, A. (2025). Decentralized AI on the Edge: Implementing Federated Learning for Predictive Maintenance in Industrial IoT Systems. Journal of Technology Informatics and Engineering, 4(2), 317–336. doi:10.51903/jtie.v4i2.281
Suwardi, R., Fadli, A., & Putri, V. (2025). Model Training and Performance Evaluation Using Standard Metrics in Predictive Analytics. Journal of Management and Informatics, 4(2), 57–74. doi:10.51903/jmi.v4i2.57
Taufik, M., Aziz, M. S., & Fitriana, A. (2025). Hybrid Explainable AI (XAI) Framework for Detecting Adversarial Attacks in Cyber Physical Systems. Journal of Technology Informatics and Engineering, 4(1), 157–171. doi:10.51903/jtie.v4i1.295
Trends, E. (2024). Goranin, N., Hora, S. K., & Čenys, H. A. (2024). A Bibliometric Review of Intrusion Detection Research in IoT: Evolution, Collaboration, and Emerging Trends. Electronics, 13(16), 3210. https://doi.org/10.3390/electronics13163210
Yao, S., Liu, D., Guo, Z., Zhang, Z., & Hu, J. (2024). Spotting Sneaky Scammers: Malicious Account Detection From a Chinese Financial Platform. Electronics, 13(23), 4742. https://doi.org/10.3390/electronics13234742
Downloads
Published
Issue
Section
License
Copyright (c) 2026 Amaka Eugenia Ngozi, Oji Victor Kalu, Ezea Jonathan Ikechukwu, Okpalla Chidimma Lilian, Gloria Ngozi Ezeh
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
