Online detection of malicious data access using DBMS auditing

Proceedings of the ACM Symposium on Applied Computing

Volumn , Issue , 2008, Pages 1013-1020

  Fonseca, José ^a   Vieira, Marco ^a   Madeira, Henrique ^a  

^a UNIVERSITY OF COIMBRA   (Portugal)

Author keywords

DBMS auditing; Intrusion detection; SQL injection

Indexed keywords

ADMINISTRATIVE DATA PROCESSING; BENCHMARKING; COMPUTATIONAL GEOMETRY; DATABASE SYSTEMS; GRAPH THEORY; INTRUSION DETECTION; LEARNING ALGORITHMS; LEARNING SYSTEMS; MANAGEMENT INFORMATION SYSTEMS; ONLINE SYSTEMS; PAPER; QUERY LANGUAGES;

AUDIT TRAILS; CONCURRENT DETECTIONS; DATA ACCESSES; DATA ATTACKS; DATABASE APPLICATIONS; DATABASE SECURITIES; DBMS AUDITING; DETECTION MECHANISMS; DIRECTED GRAPHS; GENERIC ALGORITHMS; ILLEGAL ACCESSES; ONLINE ANALYSIS; ONLINE DETECTIONS; REAL DATABASES; SQL INJECTION; STRUCTURED QUERY LANGUAGES; TRANSACTION PROCESSING; WEB-BASED APPLICATIONS;

SECURITY OF DATA;

EID: 56749169851     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1363686.1363921     Document Type: Conference Paper

References (19)

1. R. Agrawal, J. Kiernan, R. Srikant, and Y. Xu, "Hippocratic databases", 28th international conference on Very Large Data Bases (VLDB), Morgan-Kaufmann, 2002.
2. A. Anton, E.Bertino, N.Li, and T.Yu, "A roadmap for comprehensive online privacy policies", In CERIAS Technical Report, 2004-47, 2004.
3. Elisa Bertino, Ashish Kamra, Evimaria Terzi, Athena Vakali, "Intrusion detection in RBAC-administered databases", 21st Annual Comp. Security App. Conference (ACSAC) 2005.
4. Christina Yip Chung, Michael Gertz, Karl Levitt, "DEMIDS: A Misuse Detection System for Database Systems", Third International IFIP TC-11 WG11.5 Working Conference on Integrity and Internal Control in Information Systems, Kluwer Academic Publishers, 1999, 159 - 178.
5. Lawrence A. Gordon, Martin P. Loeb, William Lucyshyn and Robert Richardson, Computer Security Institute. Computer crime and security survey, 2006.
6. Y. Hu and B. Panda, "Identification of malicious transactions in database systems", International Database Engineering and Applications Symposium (IDEAS), 2003.
7. Sin Yeung Lee, Wai Lup Low, Pei Yuen Wong, "Learning Fingerprints for a Database Intrusion Detection System", 7th European Symposium on Research in Computer Security (ESORICS 2002).
8. Peng Liu, "DAIS: A Real-time Data Attack Isolation System for Commercial Database Applications", 17th Annual Computer Security Applications Conference, 2001.
9. Maxion, Roy A. and Townsend, Tahlia N. "Masquerade Detection Using Truncated Command Lines." International Conference on Dependable Systems and Networks (DSN-02), Washington, D.C. 23-26 June 2002.
10. Roy A. Maxion, "Masquerade Detection Using Enriched Command Lines", Intl Conf on Dependable Systems & Networks (DSN-03), San Francisco, California, 2003.
11. Andrew Conry-Murray, "The Threat From Within",http://www. itarchitect.com/shared/article/showArticle.jhtml?articleId=166400792, 2005
12. Oracle Corporation, "Oracle® Database Concepts 10g Release 1 (10.1)", 2003.
13. Pen Test Limited, "Oracle security white paper series exploiting and protecting oracle", 2001.
14. rd Ed., McGraw Hill, ISBN 0072465638, 2002.
15. M. Schonlau, M. Theus, "Detecting Masquerades in Intrusion Detection Based on Unpopular Commands," Information Processing Letters, 76, 33-38, 2000.
16. M. Schonlau, W. DuMouchel, W.-H. Ju, A. F. Karr, M. Theus, and Y. Vardi, "Computer intrusion: Detecting masquerades", Statistical Science, 16(1):58-74, February 2001.
17. Transaction Processing Performance Council, "TPC Benchmark C, Standard Specification, Version 5.4", 2005, available at: http://www.tpc.org/tpcc/.
18. Marco Vieira, Henrique Madeira, "Detection of malicious transactions in DBMS", The 11th IEEE Intl Symposium Pacific Rim Dependable Computing, PRDC2005, Changsha, Hunan, China, December-2005.
19. Noel Yuhanna, "Comprehensive Database Security Requires Native DBMS Features and Third-Party Tools", Market overview, Forrester Research Inc., May 2005