InnoDB Database Forensics: Reconstructing Data Manipulation Queries from Redo Logs

Frühwirt, Peter; Kieseberg, Peter; Schrittwieser, Sebastian; Huber, Markus; Weippl, Edgar

doi:10.1109/ares.2012.50

Cited by 36 publications

(22 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…ACID compliant databases use on-disk log files in order to facilitate roll-back operations for most recent transactions. By using standard forensic techniques, these log files can be used to reconstruct the past query transactions issued on the database [67]. Furthermore, in [68] Grubbs et al revealed that the timing of queries carries sensitive information which can be extracted from log files that support replicated transactions.…”

Section: Attacks Based On Confidentiality Of Data A) Injectionmentioning

confidence: 99%

Security and Privacy Implications on Database Systems in Big Data Era: A Survey

Samaraweera

Chang²

2021

IEEE Trans. Knowl. Data Eng.

View full text Add to dashboard Cite

For over many decades, relational database model has been considered as the leading model for data storage and management. However, as the Big Data explosion has generated a large volume of data, alternative models like NoSQL and NewSQL have emerged. With the advancement of communication technology, these database systems have given the potential to change the existing architecture from centralized mechanism to distributed in nature, to deploy as cloud-based solutions. Though all these evolving technologies mostly focus on performance guarantees, it is still being a major concern how these systems can ensure the security and privacy of the information they handle. Different datastores support different types of integrated security mechanisms, however, most of the non-relational database systems have overlooked the security requirements of modern Big Data applications. This paper reviews security implementations in today's leading database models giving more emphasis on security and privacy attributes. A set of standard security mechanisms have been identified and evaluated based on different security classifications. Further, it provides a thorough review and a comprehensive analysis on maturity of security and privacy implementations in these database models along with future directions/enhancements so that data owners can decide on most appropriate datastore for their data-driven Big Data applications.

show abstract

Section: Attacks Based On Confidentiality Of Data A) Injectionmentioning

confidence: 99%

Security and Privacy Implications on Database Systems in Big Data Era: A Survey

Samaraweera

Chang²

2021

IEEE Trans. Knowl. Data Eng.

View full text Add to dashboard Cite

show abstract

“…Every change in the file system will cause at least one log entry that basically consists of a header with a dedicated type, transactionID, position in the modified file and a body which contains a dump of the original file part that was modified (Frühwirt et al, 2012(Frühwirt et al, , 2013.…”

Section: Transaction Logsmentioning

confidence: 99%

“…Recently, new techniques to exploit internal log files for forensic purposes were developed: In (Frühwirt et al, 2012) the authors developed a forensic approach based on data stored in the internal redo logs used for rollbacks and undos. They demonstrated an efficient way to extract simple INSERT, DELETE and UPDATE statements, including eventually deleted information.…”

Section: Using Database Internals For Forensic Investigationsmentioning

confidence: 99%

Towards a forensic-aware database solution: Using a secured database replication protocol and transaction management for digital investigations

Frühwirt

Kieseberg

Krombholz

et al. 2014

Digital Investigation

Self Cite

View full text Add to dashboard Cite

“…Previous research [2][3][4] has shown that physically-deleted records can be recovered by directly reading the filesystem. Several additional observations can be made based on the index and the actual algorithm that is used:…”

Section: Forensic Impactmentioning

confidence: 99%

“…Internal mechanisms for guaranteeing database correctness and providing rollback functionality have been used for forensic purposes [4,5].…”

Section: Background and Related Workmentioning

confidence: 99%