SlideShare a Scribd company logo

Raid08 dbir

Download as PPT, PDF
A
Ashish Kamra

This document proposes creating user and application profiles to detect database intrusions, developing algorithms to efficiently detect anomalous behavior, and implementing response strategies in PostgreSQL. The goals are to 1) create profiles representing normal behavior, 2) detect intrusions through anomalous behavior analysis, and 3) respond to intrusions through the database itself. The methods will be implemented in PostgreSQL to highlight issues.

Technology
1 of 1
Download to read offline
1
###-### title - PI - area###-### title - PI - area DDatabaseatabase IIntrusionntrusion DDetection andetection and RResponseesponse** Ashish Kamra and Elisa Bertino akamra@purdue.edu, bertino@cs.purdue.edu 1. Create profiles that succinctly represent user/application behaviorinteracting with a DBMS. 2. Develop efficient algorithms fordetection of anomalous DBuser/application behavior. 3. Develop novel strategies/mechanisms forresponding to intrusions in context of a DBMS. 4. Implement ourmethods in the PostgreSQL DBMS and highlight implementation issues. * Supported by NSF under Grant No. 0430274 System Architecture Query User Features Assessment Profile Creator Alarm Drop Query No Action Audit Log Training Queries TRAINING PHASE Detection Engine Response Engine Response Policy Base (Extended ECA Policies) Feature Selector Profiles Consult Contributions ON ---------{EVENT} IF-----------{CONDITIONS} THEN-------{ACTION} CONFIRM---{CONFIRMATION ACTION} ELSE--------{ALTERNATE ACTION} Supervised Learning: Roles as Classes Naïve Bayes Classifier Supervised Learning: Roles as Classes Naïve Bayes Classifier Un-supervised Learning: Clustering methods Outlier Detection Test Un-supervised Learning: Clustering methods Outlier Detection Test SQL QUERIES STORED AS ASSOCIATION RULES SQL QUERIES STORED AS ASSOCIATION RULES QUERY RULES query projection attributes => query selection attributes PREDICATE RULES LHS attributes => RHS attributes QUERY RULES query projection attributes => query selection attributes PREDICATE RULES LHS attributes => RHS attributes Future Work Detection Tasks

More Related Content

PPSX
2016 Domingo ll de cuaresma
Voluntariado A IC
 
PDF
portfolio_susantran
Susan Tran
 
PPTX
Avoiding the Top Mistakes in Social Media Marketing including your website.
Musial Marketing
 
PDF
Presidente do Sintese avalia política estadual de educação na Alese
Sintese Sergipe
 
PDF
Ley 27806
Teach for All
 
PPTX
Decalogo lisnely
Aiskel Barros
 
PDF
Ley 29060
Teach for All
 
PPTX
Trabajo grupal:Participación de los padres
dboradelacruz
 
2016 Domingo ll de cuaresma
Voluntariado A IC
 
portfolio_susantran
Susan Tran
 
Avoiding the Top Mistakes in Social Media Marketing including your website.
Musial Marketing
 
Presidente do Sintese avalia política estadual de educação na Alese
Sintese Sergipe
 
Ley 27806
Teach for All
 
Decalogo lisnely
Aiskel Barros
 
Ley 29060
Teach for All
 
Trabajo grupal:Participación de los padres
dboradelacruz
 

Similar to Raid08 dbir (20)

DOC
Senior Systems Engineering ( Microsoft) .
chalikars
 
PDF
IRJET- Automatic Database Schema Generator
IRJET Journal
 
DOCX
Part 1 Major Events DocumentationScenario You visit a retail.docx
alisondakintxt
 
PDF
Database Engine Control though Web Portal Monitoring Configuration
IRJET Journal
 
PDF
Vpd
Sage Computing Services
 
PPTX
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
DOCX
Mca5033 open source db systems
smumbahelp
 
PPT
Enterprise Architecture - IT Blueprinting
Liftoph Inc
 
PDF
IAPP PSR 2022: How do you engineer DSAR for Complexity?
Cillian Kieran
 
PDF
Metadata Modeling Best Practices with IBM Cognos Framework Manager
Senturus
 
PPT
統計在半導體產業的應用 -- EDA
chunhung chou
 
PDF
resume
Piyush Mishra
 
PPTX
Sturts 2 in EHI
Minglei Tu
 
PPTX
Dynamic Data Masking - Breakthrough Innovation in Application Security
Dobler Consulting
 
PDF
Hands-On Lab: Improve large network visibility and operational efficiency wit...
CA Technologies
 
PPTX
Database Management Systems Lecture # 2 Inter
UsmanJaved520550
 
DOCX
Nishant_Patnaik
Nishant Patnaik
 
PDF
GuideIT High Level Consulting Framework
Vision Concepts Infrastructure Services Solution
 
DOCX
BoardSprintUser Story ScenarioDesignDevelopmentTestUAT Release1U .docx
jasoninnes20
 
DOC
RSPSAP
Ranbir Parmar
 
Senior Systems Engineering ( Microsoft) .
chalikars
 
IRJET- Automatic Database Schema Generator
IRJET Journal
 
Part 1 Major Events DocumentationScenario You visit a retail.docx
alisondakintxt
 
Database Engine Control though Web Portal Monitoring Configuration
IRJET Journal
 
Vpd
Sage Computing Services
 
3 tier architecture
baabtra.com - No. 1 supplier of quality freshers
 
Mca5033 open source db systems
smumbahelp
 
Enterprise Architecture - IT Blueprinting
Liftoph Inc
 
IAPP PSR 2022: How do you engineer DSAR for Complexity?
Cillian Kieran
 
Metadata Modeling Best Practices with IBM Cognos Framework Manager
Senturus
 
統計在半導體產業的應用 -- EDA
chunhung chou
 
resume
Piyush Mishra
 
Sturts 2 in EHI
Minglei Tu
 
Dynamic Data Masking - Breakthrough Innovation in Application Security
Dobler Consulting
 
Hands-On Lab: Improve large network visibility and operational efficiency wit...
CA Technologies
 
Database Management Systems Lecture # 2 Inter
UsmanJaved520550
 
Nishant_Patnaik
Nishant Patnaik
 
GuideIT High Level Consulting Framework
Vision Concepts Infrastructure Services Solution
 
BoardSprintUser Story ScenarioDesignDevelopmentTestUAT Release1U .docx
jasoninnes20
 
RSPSAP
Ranbir Parmar
 
Ad

Recently uploaded (20)

PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Teaching material agriculture food technology
LiaRayya
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Ad

Raid08 dbir

  • 1. ###-### title - PI - area###-### title - PI - area DDatabaseatabase IIntrusionntrusion DDetection andetection and RResponseesponse** Ashish Kamra and Elisa Bertino akamra@purdue.edu, bertino@cs.purdue.edu 1. Create profiles that succinctly represent user/application behaviorinteracting with a DBMS. 2. Develop efficient algorithms fordetection of anomalous DBuser/application behavior. 3. Develop novel strategies/mechanisms forresponding to intrusions in context of a DBMS. 4. Implement ourmethods in the PostgreSQL DBMS and highlight implementation issues. * Supported by NSF under Grant No. 0430274 System Architecture Query User Features Assessment Profile Creator Alarm Drop Query No Action Audit Log Training Queries TRAINING PHASE Detection Engine Response Engine Response Policy Base (Extended ECA Policies) Feature Selector Profiles Consult Contributions ON ---------{EVENT} IF-----------{CONDITIONS} THEN-------{ACTION} CONFIRM---{CONFIRMATION ACTION} ELSE--------{ALTERNATE ACTION} Supervised Learning: Roles as Classes Naïve Bayes Classifier Supervised Learning: Roles as Classes Naïve Bayes Classifier Un-supervised Learning: Clustering methods Outlier Detection Test Un-supervised Learning: Clustering methods Outlier Detection Test SQL QUERIES STORED AS ASSOCIATION RULES SQL QUERIES STORED AS ASSOCIATION RULES QUERY RULES query projection attributes => query selection attributes PREDICATE RULES LHS attributes => RHS attributes QUERY RULES query projection attributes => query selection attributes PREDICATE RULES LHS attributes => RHS attributes Future Work Detection Tasks