Abstract | ||
---|---|---|
Protecting sensitive datasets from insider and outsider attacks has been a major concern over the years. Relational Database Management System (RDBMS) has been the de facto standard to store, retrieve and manage large datasets efficiently in the last few years. However, as surprising as it seems, not a lot of works can be found in the literature which protect databases from anomalous accesses. In this paper, we present a novel Intrusion Detection System (IDS) for relational databases. Our primary objective is to protect databases from both insider and outsider threats by detecting anomalous access patterns using Hidden Markov Model (HMM). While most of the previous notable works in this area focus on query syntax to detect anomalous access, our approach takes into account the amount of sensitive information a query result contains to detect a potential intrusion. Finally, our empirical evaluation on the publicly available TPC-H dataset shows that our IDS can detect anomalous query access with a high degree of accuracy. |
Year | DOI | Venue |
---|---|---|
2015 | 10.1145/2699026.2699120 | CODASPY |
Keywords | Field | DocType |
intrusion detection,anomaly detection,hidden markov model,rdbms,security, integrity, and protection,unauthorized access | Anomaly detection,Data mining,De facto standard,Relational database,Computer science,Computer security,Anomaly-based intrusion detection system,Relational database management system,Information sensitivity,Hidden Markov model,Intrusion detection system | Conference |
Citations | PageRank | References |
1 | 0.40 | 14 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Mohammad Saiful Islam | 1 | 192 | 9.66 |
Mehmet Kuzu | 2 | 310 | 13.37 |
Murat Kantarcioglu | 3 | 2470 | 168.03 |