Samenvatting
The disclosure of sensitive data to unauthorized entities is a critical issue for organizations. Timely detection of data leakage is crucial to reduce possible damages. Therefore, breaches should be detected as early as possible, e.g., when data are leaving the database. In this paper, we focus on data leakage detection by monitoring database activities. We present a framework that automatically learns \emph{normal} user behavior, in terms of database activities, and detects anomalies as deviation from such behavior. In addition, our approach explicitly indicates the root cause of an anomaly. Finally, the framework assesses the severity of data leakages based on the sensitivity of the disclosed data.
Keywords: Data Misuse, Data Leakage, Database Activity Monitoring, Data Leakage Quanti¿cation.
Originele taal-2 | Engels |
---|---|
Titel | SECRYPT 2013 (Proceedings of the 10th International Conference on Security and Cryptography, Reykjavik, Iceland, July 29-31, 2013) |
Uitgeverij | SciTePress Digital Library |
Pagina's | 603-608 |
ISBN van geprinte versie | 978-989-8565-73-0 |
Status | Gepubliceerd - 2013 |
Evenement | conference; 10th International Conference on Security and Cryptography; 2013-07-29; 2013-07-31 - Duur: 29 jul. 2013 → 31 jul. 2013 |
Congres
Congres | conference; 10th International Conference on Security and Cryptography; 2013-07-29; 2013-07-31 |
---|---|
Periode | 29/07/13 → 31/07/13 |
Ander | 10th International Conference on Security and Cryptography |