论文信息 - Reducing Damage Assessment Latency in Survivable Databases

Reducing Damage Assessment Latency in Survivable Databases

Traditional recovery mechanisms are not adequate in protecting databases from malicious attacks. A malicious transaction by virtue of writing on to the database can corrupt one or more data items; benign transactions reading these data items and writing on other data items can help spread the damage. To prevent the damage from spreading, it is important to assess the damage and confine it as quickly as possible. Algorithms providing fast damage assessment are needed. In this paper we look at two existing techniques for damage assessment and analyze their complexity. We also propose a new technique that improves upon the existing techniques by reducing the time required for damage assessment.

Indrakshi Ray | Vijay Kumar | Ross M. McConnell | Monte Lunacek

[1] Sushil Jajodia,et al. Trusted recovery , 1999, CACM.

[2] Brajendra Panda,et al. Evaluating damage from cyber attacks: a model and analysis , 2001, IEEE Trans. Syst. Man Cybern. Part A.

[3] Sushil Jajodia,et al. Recovery from Malicious Transactions , 2002, IEEE Trans. Knowl. Data Eng..

[4] Brajendra Panda,et al. Reconstructing the Database after Electronic Attacks , 1998, DBSec.

[5] Brajendra Panda,et al. Extended data dependency approach: a robust way of rebuilding database , 2002, SAC '02.

[6] Brajendra Panda,et al. On Achieving Fast Damage Appraisal in case of Cyber Attacks , 2000 .

[7] Sushil Jajodia,et al. Intrusion Confinement by Isolation in Information Systems , 2000, J. Comput. Secur..

[8] R. K. Shyamasundar,et al. Introduction to algorithms , 1996 .

[9] Sushil Jajodia,et al. Multi-phase damage confinement in database systems for intrusion tolerance , 2001, Proceedings. 14th IEEE Computer Security Foundations Workshop, 2001..