AHYBRID APPROACH FOR DATABASE INTRUSION DETECTION AT TRANSACTION AND INTER-TRANSACTION LEVELS

Q: How can I download an article?

To download an article from SID, first log in to the site, search for the article title, and click on the 'Download Article' option.

Q: How can I download an ISI article?

To download an ISI article on SID, enter the keyword or article title in the search bar, view the relevant results, click on the desired article, and select the 'Download Article' option.

Q: How can I access the SID database?

To access the SID database, visit SID.ir, create an account, and log in to access scientific resources.

Q: Is downloading articles from SID free?

Some articles on SID are available for free, while others require payment. Details are specified on the article's page.

DOROUDIAN MOSTAFA; SHAHRIARI HAMID REZA

Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Journal Paper

Paper Information

Journal: THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY Year:2014 | Volume:6 | Issue:2 Page(s): 155-167

Download Full-Text

مرکز اطلاعات علمی Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Persian Verion

View:

368

Download:

134

Cites:

Information Journal Paper

Title

AHYBRID APPROACH FOR DATABASE INTRUSION DETECTION AT TRANSACTION AND INTER-TRANSACTION LEVELS

Author(s)

DOROUDIAN MOSTAFA | SHAHRIARI HAMID REZA | Issue Writer Certificate

Keywords

INTRUSION DETECTIONQ2

DATABASE SECURITYQ2

STATE MACHINEQ2

INTER-TRANSACTION DEPENDENCYQ2

INTER-TRANSACTION SEQUENCEQ2

Abstract

Nowadays, information plays an important role in organizations. Sensitive information is often stored in databases. Traditional mechanisms such as encryption, access control, and authentication cannot provide a high level of confidence. Therefore, the existence of INTRUSION DETECTION Systems in databases are necessary. In this paper, we propose an INTRUSION DETECTION system for detecting attacks in both database transaction level and inter-transaction level (user task level). For this purpose, we propose a detection method at transaction level, which is based on describing the expected transactions within the database applications. Then at inter-transaction level, we propose a detection method that is based on anomaly detection and uses data mining to find dependency and sequence rules. The main advantage of this system, in comparison with the previous database INTRUSION DETECTION systems, is that it can detect malicious behaviors in both transaction and inter-transaction levels.Also, it gains advantages of a hybrid method, including specification-based detection and anomaly detection, to minimize both false positive and false negative alarms. In order to evaluate the accuracy of the proposed system, some experiments have been done. The experiment results demonstrate that the true positive rate (recall metric) is higher than 80%, and the false positive rate is lower than 10% per different data sets and choosing appropriate ranges for support and confidence thresholds. The experimental evaluation results show high accuracy and effectiveness of the proposed system.

Cites

No record.

References

No record.

Cite

APA: Copy

DOROUDIAN, MOSTAFA, & SHAHRIARI, HAMID REZA. (2014). AHYBRID APPROACH FOR DATABASE INTRUSION DETECTION AT TRANSACTION AND INTER-TRANSACTION LEVELS. THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 6(2 ), 155-167. SID. https://sid.ir/paper/241790/en

Vancouver: Copy

DOROUDIAN MOSTAFA, SHAHRIARI HAMID REZA. AHYBRID APPROACH FOR DATABASE INTRUSION DETECTION AT TRANSACTION AND INTER-TRANSACTION LEVELS. THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY[Internet]. 2014;6(2 ):155-167. Available from: https://sid.ir/paper/241790/en

IEEE: Copy

MOSTAFA DOROUDIAN, and HAMID REZA SHAHRIARI, “AHYBRID APPROACH FOR DATABASE INTRUSION DETECTION AT TRANSACTION AND INTER-TRANSACTION LEVELS,” THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY, vol. 6, no. 2 , pp. 155–167, 2014, [Online]. Available: https://sid.ir/paper/241790/en

Related Journal Papers