|
Published Articles >> Table of Contents >> Abstract
25th Annual International Computer Software and Applications Conference (COMPSAC'01)
p. 249
A Novel Intrusion Detection System Model for Securing Web-based Database Systems
Shu Wenhui, School of EEE, NTU
Tan T H, Nanyang Technological University
Daniel, Nanyang Technological University
Full Article Text:
  
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CMPSAC.2001.960624
Send link to a friend
| Abstract |
|
Intrusion Detection (ID) has become an important technology for protecting information resources and databases from malicious attacks and information leakage. This paper proposes a novel two-layer mechanism to detect intrusions against a web-based database service. Layer one built historical profiles based on audit trails and other log data provided by the web server and database server. Pre-alarms would be triggered if anomalies occurred. Layer two made further analysis on the pre-alarms generated from layer one. Such methods integrated the alarm context with the alarms themselves rather than a simple "analysis in isolation". This would reduce error rates, especially false positives and greatly improve the accuracy of intrusion detection, alarm notification and hence more effective incident handling.
|
 Additional Information
|
Index Terms- Security, Intrusion Detection System(IDS), Web-based Database System
Citation:
Shu Wenhui, Tan T H, Daniel,
"A Novel Intrusion Detection System Model for Securing Web-based Database Systems,"
compsac,
p. 249,
25th Annual International Computer Software and Applications Conference (COMPSAC'01),
2001
|
|
