Detection of intrusive activity in databases by combining multiple evidences and belief update

机译：通过结合多种证据和信念更新来检测数据库中的侵入性活动

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, we propose an innovative approach for database intrusion detection which combines evidences from current as well as past behavior of users. It consists of four components, namely, rule-based component, belief combination component, security sensitive history database component and Bayesian learning component. The rule-based component consists of a set of well-defined rules which give independent evidences about a transaction's behavior. An extension of Dempster-Shafer's theory is used to combine multiple such evidences and an initial belief is computed. First level inferences are made about the transaction depending on this initial belief. Once the transaction is found to be suspicious, belief is updated according to its similarity with malicious or genuine transaction history using Bayesian learning. Experimental evaluation shows that the proposed intrusion detection system can effectively detect intrusive attacks in databases without raising too many false alarms.

机译：在本文中，我们提出了一种用于数据库入侵检测的创新方法，该方法结合了来自用户当前和过去行为的证据。它由四个组件组成，分别是基于规则的组件，信念组合组件，安全敏感历史数据库组件和贝叶斯学习组件。基于规则的组件由一组定义明确的规则组成，这些规则提供有关交易行为的独立证据。 Dempster-Shafer理论的扩展用于组合多个此类证据，并计算出初始置信度。根据此最初的信念对交易进行第一级推断。一旦发现交易可疑，就使用贝叶斯学习根据信念与恶意或真实交易历史的相似性来更新信念。实验评估表明，所提出的入侵检测系统可以有效地检测数据库中的入侵攻击，而不会引起过多的虚警。

著录项

来源
《Computational Intelligence in Cyber Security, 2009. CICS '09》|2009年|83-90|共8页
会议地点 Nashville TN(US);Nashville TN(US)
作者
Panigrahi S.; Sural S.; Majumdar A.K.;
展开▼
作者单位

Sch. of Inf. Technol., Indian Inst. of Technol., Kharagpur;

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
belief networks; database management systems; inference mechanisms; knowledge based systems; security of data; Bayesian learning component; Dempster-Shafer theory; belief combination component; database intrusion detection; first level inference; rule-based component; security sensitive history database component; Bayesian learning; Database security; Intrusion detection; Suspicion score;

机译：置信网络；数据库管理系统；推理机制；基于知识的系统；数据安全性；贝叶斯学习组件； Dempster-Shafer理论；信念组合组件；数据库入侵检测；第一级推理；基于规则的组件；安全敏感历史数据库组件；贝叶斯学习;数据库安全;入侵检测;怀疑评分;

相似文献

外文文献
中文文献
专利

1. Two-stage database intrusion detection by combining multiple evidence and belief update [J] . Suvasini Panigrahi, Shamik Sural, Arun K. Majumdar Information Systems Frontiers . 2013,第1期

机译：结合多种证据和信念更新进行两阶段数据库入侵检测
2. Two-stage database intrusion detection by combining multiple evidence and belief update [J] . Suvasini Panigrahi, Shamik Sural, Arun K. Majumdar Information systems frontiers . 2013,第1期

机译：结合多种证据和信念更新进行两阶段数据库入侵检测
3. Updating beliefs and combining evidence in adaptive forest management under climate change: A case study of Norway spruce (Picea abies L. Karst) in the Black Forest, Germany [J] . Rasoul Yousefpour, Christian Temperli, Harald Bugmann, Journal of Environmental Management . 2013,第juna15期

机译：更新信念并结合气候变化适应性森林管理中的证据：以德国黑森林中的挪威云杉（Picea abies L. Karst）为例
4. Detection of Intrusive Activity in Databases by Combining Multiple Evidences and Belief Update [C] . Suvasini Panigrahi, Shamik Sural, A. K. Majumdar IEEE Symposium on Computational Intelligence in Cyber Security . 2009

机译：通过组合多次证据和信仰更新检测数据库中的侵入活动
5. Belief Updating in a Biased Information Environment: Evidence from Hierarchical Government Satisfaction in Vietnam [D] . Song, Yang. 2020

机译：信仰更新在偏见的信息环境中：来自越南的分层政府满意度的证据
6. Improved Statistical Signal Detection in Pharmacovigilance by Combining Multiple Strength-of-Evidence Aspects in vigiRank [O] . Ola Caster, Kristina Juhlin, Sarah Watson, -1

机译：通过结合vigiRank中的多个证据方面来改进药物警戒中的统计信号检测
7. Detection of Intrusive Activity in Databases by Combining Multiple Evidences and Belief Update [O] . Suvasini Panigrahi, Shamik Sural, A. K. Majumdar 2009

机译：结合多种证据和信念更新检测数据库中的侵入性活动

Detection of intrusive activity in databases by combining multiple evidences and belief update

摘要

著录项

相似文献

相关主题

期刊订阅