Title :
Database anomalous activities detection and quantification
Author :
Costante, Elisa ; Vavilis, Sokratis ; Etalle, Sandro ; den Hartog, Jerry ; Petkovic, Milan ; Zannone, Nicola
Author_Institution :
Eindhoven University of Technology, Den Dolech 2, Eindhoven, The Netherlands
Abstract :
The disclosure of sensitive data to unauthorized entities is a critical issue for organizations. Timely detection of data leakage is crucial to reduce possible damages. Therefore, breaches should be detected as early as possible, e.g., when data are leaving the database. In this paper, we focus on data leakage detection by monitoring database activities. We present a framework that automatically learns normal user behavior, in terms of database activities, and detects anomalies as deviation from such behavior. In addition, our approach explicitly indicates the root cause of an anomaly. Finally, the framework assesses the severity of data leakages based on the sensitivity of the disclosed data.
Keywords :
Data models; Databases; Feature extraction; Hospitals; Monitoring; Organizations; Sensitivity; Data Leakage; Data Leakage Quantification; Data Misuse; Database Activity Monitoring;
Conference_Titel :
Security and Cryptography (SECRYPT), 2013 International Conference on
Conference_Location :
Reykjavik, Iceland
