Title : 
System architecture for SQL injection and insider misuse detection system for DBMS
         
        
            Author : 
Asmawi, Aziah ; Sidek, Zailani Mohamed ; Razak, Shukor Abd
         
        
            Author_Institution : 
Faculty of Computer Science and Information System, Universiti Teknologi, Malaysia
         
        
        
        
        
        
        
            Abstract : 
As organizations increase their adoption of database systems as one of their key data management technologies for the daily operations and decision makings, the security of data managed by these systems becomes crucial. Damage and misuse of data affect not only a single user or application, but may have effect the entire organization. The recent rapid proliferations of web-based applications with database at its backend have further increased the risk of database exposure to the outside world. There are many recent reports on intrusion from external hackers which compromised the database system. However, there are also insiders who abuse their privileges and access the database system for many intentions. For that reason, it is imperative for us to secure database system from both external and internal attacks. This paper describes on database security threats and the existing works that had been done to mitigate these problems. One of possible solutions is by using Intrusion Detection System (IDS). For that reason, this study proposed a novel SQL Injections and Insider Misuse Detection System (SIIMDS) to provide higher level of security for database system.
         
        
            Keywords : 
Application software; Computer science; Computer security; Data security; Database systems; Information security; Internet; Intrusion detection; Management information systems; Technology management;
         
        
        
        
            Conference_Titel : 
Information Technology, 2008. ITSim 2008. International Symposium on
         
        
            Conference_Location : 
Kuala Lumpur, Malaysia
         
        
            Print_ISBN : 
978-1-4244-2327-9
         
        
            Electronic_ISBN : 
978-1-4244-2328-6
         
        
        
            DOI : 
10.1109/ITSIM.2008.4631942