Mitigating Malicious Updates: Prevention of Insider Threat to Databases

Author

Ragavan, Harini ; Panda, Biplab

Author_Institution

Comput. Sci. & Comput. Eng. Dept., Univ. of Arkansas, Fayetteville, AR, USA

fYear

2013

fDate

16-18 July 2013

Firstpage

781

Lastpage

788

Abstract

Insider threats cause serious damage to data in any organization and is considered as a grave issue. In spite of the presence of threat prevention mechanisms, insiders can continue to attack a database by figuring out the dependency relationships among data items. Thus, examining write operations performed by an insider by taking advantage of dependencies aids in mitigating insider threats. We have developed two attack prevention models, which involve logs and dependency graphs respectively, to monitor data items and prevent malicious operations on them. The developed algorithms have been implemented on a simulated database and the results show that the models effectively mitigate insider threats arising from write operations.

Keywords

database management systems; graph theory; security of data; attack prevention models; data items monitoring; database; dependency graph; dependency relationships; insider threat prevention; logs; malicious operations; malicious update mitigation; write operations; Data models; Databases; Delays; Monitoring; Organizations; Remuneration; Security; Database; Dependency Graph; Insider Threat; Log;

fLanguage

English

Publisher

ieee

Conference_Titel

Trust, Security and Privacy in Computing and Communications (TrustCom), 2013 12th IEEE International Conference on

Conference_Location

Melbourne, VIC

Type

conf

DOI

10.1109/TrustCom.2013.95

Filename

6680915