Database intrusion detection using role and user behavior based risk assessment

Singh, Indu B.; Kumar, Narendra; Srinivasa, K. G.; Sharma, Tript; Kumar, V. Arul; Singhal, Siddharth

doi:10.1016/j.jisa.2020.102654

Cited by 6 publications

(6 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Role-Based Access Control (RBAC) [8] complements PoLP by assigning access permissions based on predefined roles. This streamlines user privilege management, ensuring individuals have access only to resources essential for their specific organizational roles.…”

Section: State Of the Artmentioning

confidence: 99%

Database Decomposition to satisfy the Least Privilege Principle in Healthcare

Sammartino,

Baiardi

2024

ARIS2-Journal

View full text Add to dashboard Cite

The Multilevel Database Decomposition Framework is a cybersecurity strategy to enhance system robustness and minimize the impact of data breaches with a focus on healthcare systems. With respect to more conventional normalization methods, the framework prioritizes robustness against cyber threats over mere data redundancy reduction. The key strategy of the framework is the decomposition of a database into smaller databases to restrict user access and mitigate the impact of successful intrusions by satisfying the least privilege principle in a more complete way. For this purpose, each database the decomposition produces is uniquely associated with a set of users and the decomposition ensures that each user can access all and only the data his/her operations need. This limits the potential impact of threat agents impersonating users to the information a compromised user can access. To prevent the propagation of an intrusion across the databases it produces, the framework can apply alternative allocation strategies by distributing the databases to distinct virtual or physical entities according to the security requirement of the original application. This flexibility in allocation management ultimately reinforces defenses against evolving cyber threats and it is the main advantage of the deposition. As a counterpart of better robustness, some tables will be replicated across the databases the decomposition returns and updates of these tables should be properly replicated to prevent inconsistencies among copies of the same table in distinct databases. The paper includes a performance analysis to evaluate the overheads associated with the alternative allocations. This offers insights into the framework implementation and adaptability to distinct security needs and to evaluate the framework effectiveness for healthcare data systems.

show abstract

Section: State Of the Artmentioning

confidence: 99%

Database Decomposition to satisfy the Least Privilege Principle in Healthcare

Sammartino,

Baiardi

2024

ARIS2-Journal

View full text Add to dashboard Cite

show abstract

“…With incredibly high secure data and an expanded online presence, the worries concerning DB security are high at all-time. As more systems are connected and brought online to improve access, the sensitivity towards attacks is also increased, estimated to be about $1.3 million in massive financial losses; these mischievous attacks are also liable for public reputation and client relations with the association [21,22]. All users can boundlessly get information from the DB server in an un-secure DB system.…”

Section: Secure Databasesmentioning

confidence: 99%

“…The remarkable development in the deployment of DB's is the required architecture to cope with information that can be attributed to the rising big data. Every 1.2 years, according to research, the entire quantity of institutional information doubles [21].…”

Section: Introductionmentioning

confidence: 99%

Advancing database security: a comprehensive systematic mapping study of potential challenges

et al. 2023

View full text Add to dashboard Cite

The value of data to a company means that it must be protected. When it comes to safeguarding their local and worldwide databases, businesses face a number of challenges. To systematically review the literature to highlight the difficulties in establishing, implementing, and maintaining secure databases. In order to better understand database system problems, we did a systematic mapping study (SMS). We’ve analyzed 100 research publications from different digital libraries and found 20 issues after adopting inclusion and exclusion criteria. This SMS study aimed to identify the most up-to-date research in database security and the different challenges faced by users/clients using various databases from a software engineering perspective. In total, 20 challenges were identified related to database security. Our results show that “weak authorization system”, “weak access control”, “privacy issues/data leakage”, “lack of NOP security”, and “database attacks” as the most frequently cited critical challenges. Further analyses were performed to show different challenges with respect to different phases of the software development lifecycle, venue of publications, types of database attacks, and active research institutes/universities researching database security. The organizations should implement adequate mitigation strategies to address the identified database challenges. This research will also provide a direction for new research in this area.

show abstract

“…If the passenger submits the data and abandons taking the elevator, the system will delete the user's request and release space for others. It is also important to verify the correspondence between the user and the submitted data [39][40][41]. Figure 6 shows the two ways of reservation.…”

Section: Strategy For Preventing Malicious Data Intrusionmentioning

confidence: 99%

“…If the task cannot be transported at one time, a remaining matrix R up n×n will be generated. The specific process of the matrix iterative algorithm will be given below, and the initialized waiting matrix W up n×n can be written as Equation (40).…”

Section: Numerical Examplementioning

confidence: 99%

A Real-Time Matrix Iterative Optimization Algorithm of Booking Elevator Group and Numerical Simulation Formed by Multi-Sensor Combination

Chen

Zheng

Liu³

et al. 2021

Electronics

View full text Add to dashboard Cite

Elevators are an essential indoor transportation tool in high-rise buildings. The world is advocating the design concept of safety, energy-saving, and intelligence. We focus on improving operation speed and utilization efficiency of the elevator group. This paper proposed a real-time reservation elevator groups optimization algorithm, and a dynamic matrix iterative model has been established. The indoor navigation technology UWB is applied, which can help users to quickly find elevators. The manned equilibrium efficiency and running time equilibrium efficiency of elevator group are given. Moreover, the data filtering criterion formulas for user waiting time and elevator remaining space are defined. In this paper, three numerical examples are given. Example 1 is a single elevator in n-storey building. Example 2 is compared with different scheduling algorithms, such as FCFS, SSTF, LOOK, and SCAN algorithms, and the results show that our method has the advantages of short total running time and less round-trip frequency. At last, the matrix of numerical iteration results are visualized, and the data movement status of people on each floor can be observed. Example 3 introduced elevator group algorithms. For high-rise buildings, this paper adopts a high, medium, and low hierarchical management model; this model has high coordination, as well as fast response, batch process, and adaptive function. Finally, we also discussed and compared the complexity of single elevator and elevator group algorithms. Therefore, this method has great development potential and practical application value, which deserves further study.

show abstract

Database intrusion detection using role and user behavior based risk assessment

Cited by 6 publications

References 25 publications

Database Decomposition to satisfy the Least Privilege Principle in Healthcare

Database Decomposition to satisfy the Least Privilege Principle in Healthcare

Advancing database security: a comprehensive systematic mapping study of potential challenges

A Real-Time Matrix Iterative Optimization Algorithm of Booking Elevator Group and Numerical Simulation Formed by Multi-Sensor Combination

Contact Info

Product

Resources

About