【24h】

Detection of Insiders Misuse in Database Systems

机译：检测数据库系统中的内部人滥用

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Almost all systems all over the world suffer from outsider and insider attacks. Outsider attacks are those that come from outside the system, however, insider attacks are those that are launched from insiders of the system. In this paper we concentrate on insider attacks detection on the application level; database is our focus. Insider attacks differ from outsider attacks in many ways; most importantly, insiders have more knowledge about the underlying systems. Because of their knowledge and their privileges of the system resources; their risk can be greater and more severe. In fact, insiders can find vulnerabilities in the system easily. Several techniques have been proposed that tackled the insider threat problem, but most of them concentrate on insider threat detection in computer system level. We describe a method for insider threat detection in database systems that handle entrants on the role of insiders for such attacks. Our simulation results show resistance against such attacks. Also, our results show good performance in terms of reducing false alarms to the minimum.

机译：世界各地的所有系统都遭受局外人和内幕攻击。局外攻击是那些来自系统之外的攻击，然而，内幕攻击是那些从系统内部推出的内幕攻击。在本文中，我们专注于内幕攻击对应用水平的检测;数据库是我们的焦点。内幕攻击在许多方面与局外攻击不同;最重要的是，内部人员对底层系统有更多了解。由于他们的知识及其系统资源的特权;他们的风险可以更大，更严重。事实上，内部人员可以轻松地找到系统中的漏洞。已经提出了几种技术，以解决内幕威胁问题，但大多数集中在计算机系统级别中的内幕威胁检测。我们描述了一种在数据库系统中的内部威胁检测方法，该方法处理了用于这些攻击的内部人的角色的参与者。我们的仿真结果表明抵抗这种攻击。此外，我们的结果在将误报降至最低的情况下表现出良好的性能。

著录项

来源
《International MultiConference of Engineers and Computer Scientists;IAENG International Conference on Artificial Intelligence and Applications;IAENG International Conference on Bioinformatics;IAENG International Conference on Computer Science;IAENG International Conference on Data Mining and Applications;IAENG International Conference on Imaging Engineering;IAENG International Conference on Communication Systems and Applications;IAENG International Conference on Internet Computing and Web Services;IAENG International Conference on Software Engineering;IAENG International Conference on Control and Automation;IAENG International Conference on Electrical Engineering;IAENG International Conference on Electrical Engineering Special Session;IAENG International Conference on Industrial Engineering;IAENG International Conference on Industrial Engineering Special Session;IAENG International Conference on Operations Research;IAENG International Conference on Scientific Computing》|2011年||共6页
会议地点
作者
Nahla Shatnawi; Qutaibah Althebyan; Wail Mardini;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP3-53;
关键词
About four key words or phrases in alphabetical order; Separated by commas; For example; Visual-servoing; Tracking; Biomimetic; Redundancy; Degrees-of-freedom;

机译：大约四个关键词或短语按字母顺序排列;用逗号分隔;例如;视觉伺服;跟踪;仿生;冗余;自由度;自由度;

相似文献

外文文献
中文文献
专利

1. Using Genetic Algorithm to Minimize False Alarms in Insider Threats Detection of Information Misuse in Windows Environment [J] . Bin Ahmad Maaz, Akram Adeel, Asif M., Mathematical Problems in Engineering . 2014,第pta21期

机译：Windows环境中使用遗传算法将内部威胁检测中的误用最小化
2. Using Genetic Algorithm to Minimize False Alarms in Insider Threats Detection of Information Misuse in Windows Environment [J] . MaazBin Ahmad, AdeelAkram, M.Asif, Mathematical Problems in Engineering: Theory, Methods and Applications . 2014,第4期

机译：在Windows环境中使用遗传算法将内部威胁检测中的误用最小化
3. LUARM: An Audit Engine for Insider Misuse Detection [J] . G. Magklaras, S. Furnell, M. Papadaki International journal of digital crime and forensics . 2011,第3期

机译：LUARM：用于内部滥用检测的审核引擎
4. Detection of Insiders Misuse in Database Systems [C] . Nahla Shatnawi, Qutaibah Althebyan, Wail Mardini International MultiConference of Engineers and Computer Scientists;IAENG International Conference on Artificial Intelligence and Applications;IAENG International Conference on Bioinformatics;IAENG International Conference on Computer Science;IAENG International Conference on Data Mining and Applications;IAENG International Conference on Imaging Engineering;IAENG International Conference on Communication Systems and Applications;IAENG International Conference on Internet Computing and Web Services;IAENG International Conference on Software Engineering;IAENG International Conference on Control and Automation;IAENG International Conference on Electrical Engineering;IAENG International Conference on Electrical Engineering Special Session;IAENG International Conference on Industrial Engineering;IAENG International Conference on Industrial Engineering Special Session;IAENG International Conference on Operations Research;IAENG International Conference on Scientific Computing . 2011

机译：检测数据库系统中的内部人滥用
5. Data profiling and the access path model: A step toward addressing insider misuse in database systems. [D] . Gandhi, Madhavi. 2005

机译：数据分析和访问路径模型：迈向解决数据库系统内部滥用的一步。
6. Tracking the Insider Attacker: A Blockchain Traceability System for Insider Threats [O] . Teng Hu, Bangzhou Xin, Xiaolei Liu, 2020

机译：跟踪Insider攻击者：内部内部威胁的区块链可追溯性系统
7. Hybrid detection for databases using SQL injection and insider misuse detection techniques [O] . Asmawi Aziah 2010

机译：使用SQL注入和内部人员滥用检测技术的数据库混合检测
8. Research and Development Initiatives Focused on Preventing, Detecting, and Responding to Insider Misuse of Critical Defense Information Systems [R] . Anderson, R. H. 1999

机译：研究和开发计划专注于预防，检测和应对关键防御信息系统的内部滥用

Detection of Insiders Misuse in Database Systems

摘要

著录项

相似文献

相关主题

期刊订阅