Title :
A Practical Database Intrusion Detection System Framework
Author :
Zhang, Yawei ; Ye, Xiaojun ; Xie, Feng ; Peng, Yong
Author_Institution :
Key Lab. for Inf. Syst. Security, Tsinghua Univ., Beijing, China
Abstract :
Security mechanisms within DBMSs are far from effective to detect and prevent anomalous behavior of applications and intrusions from attackers. In fact, intrusions executed by unauthorized users to explore system vulnerabilities, and malicious database transactions executed by authorized users, both cannot be detected and prevented by typical security mechanisms. In this paper we proposed a database intrusion detection system architecture based on the database communication content detection mechanism. Implementation strategies for main components are detailed. Besides, we investigate several critical intrusion detection approaches used in the practice.
Keywords :
database management systems; security of data; database communication content detection mechanism; database intrusion detection system; malicious database transactions; security mechanisms; Communication system security; Data security; Database systems; Fires; Information security; Information technology; Intrusion detection; Pattern recognition; Spatial databases; Transaction databases; database security; detection; intrusion;
Conference_Titel :
Computer and Information Technology, 2009. CIT '09. Ninth IEEE International Conference on
Conference_Location :
Xiamen
Print_ISBN :
978-0-7695-3836-5
DOI :
10.1109/CIT.2009.69
