2 research outputs found
Privacy Interpretation of Behavioural-based Anomaly Detection Approaches
This paper proposes the notion of 'Privacy-Anomaly Detection' and considers
the question of whether behavioural-based anomaly detection approaches can have
a privacy semantic interpretation and whether the detected anomalies can be
related to the conventional (formal) definitions of privacy semantics such as
k-anonymity. The idea is to learn the user's past querying behaviour in terms
of privacy and then identifying deviations from past behaviour in order to
detect privacy violations. Privacy attacks, violations of formal privacy
definition, based on a sequence of SQL queries (query correlations) are also
considered in the paper and it is shown that interactive querying settings are
vulnerable to privacy attacks based on query sequences. Investigation on
whether these types of privacy attacks can potentially manifest themselves as
anomalies, specifically as privacy-anomalies was carried out. It is shown that
in this paper that behavioural-based anomaly detection approaches have the
potential to detect privacy attacks based on query sequences (violation of
formal privacy definition) as privacy-anomalies.Comment: 19 Page
Database Intrusion Detection Systems (DIDs): Insider Threat Detection via Behavioural-based Anomaly Detection Systems -- A Brief Survey of Concepts and Approaches
One of the data security and privacy concerns is of insider threats, where
legitimate users of the system abuse the access privileges they hold. The
insider threat to data security means that an insider steals or leaks sensitive
personal information. Database Intrusion detection systems, specifically
behavioural-based database intrusion detection systems, have been shown
effective in detecting insider attacks. This paper presents background concepts
on database intrusion detection systems in the context of detecting insider
threats and examines existing approaches in the literature on detecting
malicious accesses by an insider to Database Management Systems (DBMS).Comment: 24 page