Earticle

초록

영어

Many behaviors happen in information protection control, threatening from unauthorized change, destruction, and exposure to integrity, confidentiality, and availability of database, which is the final and core object of control. Like this it approaches database through numerous paths like many applications and home pages and execute query which search, modify, and delete the data. Some of it executes normal queries, but sometimes it maliciously executes the queries for leakage of information, and gives load to database server by executing the query which uses large amount of hardware resources. Traditionally it has limits, using only to find the reason for the problems, such as malignant queries, by collecting security log. Analyzing malignant queries and personal information leakage in diversified views through multidimensional analysis of data is necessary in order to use security log in more various ways. Therefore, this treatise is going to design multidimensional analysis modeling and suggest the technology to analyze in diversified views as an application plan of existing security log so that we can detect malignant queries and personal information leakage through security log analysis. We established the standard of analysis as follows for various analyses. First, we made linkage analysis available, which we cannot know with only simple history search, through analysis of database examination history. Second, we analyze if it repeatedly approached important table for a long time through detection of abnormal pattern or long term leakage via database abnormal access analysis. Third, we understood the flow of elements and data which weigh impact on specific database assets through database impact analysis and made analysis of database assets correlation and data flow analysis available. For analysis this treatise analyzed the log collected by using OLAP tools and used experiment data and operation data in order to verify the efficiency of database security log analysis technology suggested. Also we showed that the analysis method suggested by this treatise is excellent in availability and credibility in detection of malignant queries and personal information leakage, by comparing traditional data analysis method and the analysis method suggested by this treatise.

목차

Abstract
 1. Introduction
 2. Related Works
 3. Detection of Malignant Query and Personal Information Leakage through Database Security Log Analysis
  3.1. Types of SQL Injection Attack Queries
  3.2. Types of Personal Information Leaking Queries
  3.3. Designing and Composing Database Security Log Analysis
  3.4. Atypical Audit History Analysis Method
  3.5. Abnormal Pattern Detection Method
  3.6. Detection Method for Long-Term Information Leakage
 4. Conclusions
 References

키워드

저자

• Gei-Young Kim [ Dept. of IT Policy and Mgmt., Graduate School of Soongsil Univ., Seoul 156-743, Korea ]
• Kyung-Jin Jung [ Dept. of IT Policy and Mgmt., Graduate School of Soongsil Univ., Seoul 156-743, Korea ]
• Yongtae Shin [ Dept. of IT Policy and Mgmt., Graduate School of Soongsil Univ., Seoul 156-743, Korea ]
• Sangphil Kim [ Graduate School of Software, Soongsil University, Sangdo-dong, Dongjak-gu, Seoul, Korea ]
• Jong-Bae Kim [ Graduate School of Software, Soongsil University, Sangdo-dong, Dongjak-gu, Seoul, Korea ] Corresponding author

참고문헌

발행기관

간행물

표지보기 관심저널 등록

• 간행물명

  International Journal of Multimedia and Ubiquitous Engineering

• 간기

  월간

• pISSN

  1975-0080

• 수록기간

  2008~2016

• 등재여부

  SCOPUS

• 십진분류

  KDC 505 DDC 605