Hybrid detection for databases using SQL injection and insider misuse detection techniques
The recent rapid proliferations of web based applications with databases at its back-end have further increased the risk of database exposure to the outside world. Nowadays, there are many reports on intrusion from external and internal threats that compromised the database system. For that reason,...
Saved in:
| Main Author: | |
|---|---|
| Format: | Thesis |
| Language: | English |
| Published: |
2010
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/11468/7/AziahAsmawiMFSKSM2010.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my-utm-ep.11468 |
|---|---|
| record_format |
uketd_dc |
| spelling |
my-utm-ep.114682017-09-20T07:59:14Z Hybrid detection for databases using SQL injection and insider misuse detection techniques 2010-07 Asmawi, Aziah QA75 Electronic computers. Computer science The recent rapid proliferations of web based applications with databases at its back-end have further increased the risk of database exposure to the outside world. Nowadays, there are many reports on intrusion from external and internal threats that compromised the database system. For that reason, it is important for us to provide protection for database systems from significant threats that comes from outside and inside the organizations. Currently, research on database security has been taken seriously as many solutions have emerged. All solutions should address the security elements that make up a lifecycle categorized into three areas which are prevention, detection and response mechanisms. This research focuses on the detection mechanism by deploying intrusion detection system (IDS) within the database management system (DBMS). The objective of this research is to propose a hybrid detection technique in order to cater external and internal threats which can provide protection for DBMS. This hybrid detection technique is called SQL Injection and Insider Misuse Detection System (SIIMDS). The technique combines the misuse and anomaly detection technique that consists of Misuse Detection Module, Anomaly Detection Module, Database Audit Log and Response Module. A prototype of the system was designed, implemented and analyzed to evaluate its security and performance. The analysis of the result in this research proved that the employment of this hybrid detection technique has provided better protection for DBMS in terms of high detection rates and low false alarm rates. 2010-07 Thesis http://eprints.utm.my/id/eprint/11468/ http://eprints.utm.my/id/eprint/11468/7/AziahAsmawiMFSKSM2010.pdf application/pdf en public masters Universiti Teknologi Malaysia, Faculty of Computer Science and Information Systems Faculty of Computer Science and Information System |
| institution |
Universiti Teknologi Malaysia |
| collection |
UTM Institutional Repository |
| language |
English |
| topic |
QA75 Electronic computers Computer science |
| spellingShingle |
QA75 Electronic computers Computer science Asmawi, Aziah Hybrid detection for databases using SQL injection and insider misuse detection techniques |
| description |
The recent rapid proliferations of web based applications with databases at its back-end have further increased the risk of database exposure to the outside world. Nowadays, there are many reports on intrusion from external and internal threats that compromised the database system. For that reason, it is important for us to provide protection for database systems from significant threats that comes from outside and inside the organizations. Currently, research on database security has been taken seriously as many solutions have emerged. All solutions should address the security elements that make up a lifecycle categorized into three areas which are prevention, detection and response mechanisms. This research focuses on the detection mechanism by deploying intrusion detection system (IDS) within the database management system (DBMS). The objective of this research is to propose a hybrid detection technique in order to cater external and internal threats which can provide protection for DBMS. This hybrid detection technique is called SQL Injection and Insider Misuse Detection System (SIIMDS). The technique combines the misuse and anomaly detection technique that consists of Misuse Detection Module, Anomaly Detection Module, Database Audit Log and Response Module. A prototype of the system was designed, implemented and analyzed to evaluate its security and performance. The analysis of the result in this research proved that the employment of this hybrid detection technique has provided better protection for DBMS in terms of high detection rates and low false alarm rates. |
| format |
Thesis |
| qualification_level |
Master's degree |
| author |
Asmawi, Aziah |
| author_facet |
Asmawi, Aziah |
| author_sort |
Asmawi, Aziah |
| title |
Hybrid detection for databases using SQL injection and insider misuse detection techniques |
| title_short |
Hybrid detection for databases using SQL injection and insider misuse detection techniques |
| title_full |
Hybrid detection for databases using SQL injection and insider misuse detection techniques |
| title_fullStr |
Hybrid detection for databases using SQL injection and insider misuse detection techniques |
| title_full_unstemmed |
Hybrid detection for databases using SQL injection and insider misuse detection techniques |
| title_sort |
hybrid detection for databases using sql injection and insider misuse detection techniques |
| granting_institution |
Universiti Teknologi Malaysia, Faculty of Computer Science and Information Systems |
| granting_department |
Faculty of Computer Science and Information System |
| publishDate |
2010 |
| url |
http://eprints.utm.my/id/eprint/11468/7/AziahAsmawiMFSKSM2010.pdf |
| _version_ |
1747814859629658112 |