Two-stage database intrusion detection by combining multiple evidence and belief update |
| |
Authors: | Suvasini Panigrahi Shamik Sural Arun K. Majumdar |
| |
Affiliation: | 1. School of Computer Engineering, KIIT University, Bhubaneswar, India 2. School of Information Technology, Indian Institute of Technology Kharagpur, Kharagpur, India 3. Department of Computer Science & Engineering, Indian Institute of Technology Kharagpur, Kharagpur, India
|
| |
Abstract: | Insider threats have gained prominence and pose the most challenging threats to a database system. In this paper, we have proposed a new approach for detecting intrusive attacks in databases by fusion of information sources and use of belief update. In database intrusion detection, only intra-transactional features are not sufficient for detecting attackers within the organization as they are potentially familiar with the day-to-day work. Thus, the proposed system uses inter-transactional as well as intra-transactional features for intrusion detection. Moreover, we have also considered three different sensitivity levels of table attributes for keeping track of the malicious modification of the highly sensitive attributes more carefully. We have analyzed the performance of the proposed database intrusion detection system using stochastic models. Our system performs significantly better compared to two intrusion detection systems recently proposed in the literature. |
| |
Keywords: | |
本文献已被 SpringerLink 等数据库收录! |
|