Knowledge acquisition and insider threat prediction in relational database systems

Qussai Yaseen; Brajendra Panda

doi:10.1109/CSE.2009.159

Knowledge acquisition and insider threat prediction in relational database systems

Qussai Yaseen
, Brajendra Panda

University of Arkansas System

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

28 Scopus citations

Abstract

This paper investigates the problem of knowledge acquisition by an unauthorized insider using dependencies between objects in relational databases. It defines various types of knowledge. In addition, it introduces the Neural Dependency and Inference Graph (NDIG), which shows dependencies among objects and the amount of knowledge that can be inferred about them using dependency relationships. Moreover, it introduces an algorithm to determine the knowledgebase of an insider and explains how insiders can broaden their knowledge about various relational database objects to which they lack appropriate access privileges. In addition, it demonstrates how NDIGs and knowledge graphs help in assessment of insider threats and what security officers can do to avoid such threats.

Original language	English
Title of host publication	Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009
Pages	450-455
Number of pages	6
DOIs	https://doi.org/10.1109/CSE.2009.159
State	Published - 2009
Externally published	Yes
Event	2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009 - Vancouver, BC, Canada Duration: 29 Aug 2009 → 31 Aug 2009

Publication series

Name	Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009
Volume	3

Conference

Conference	2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009
Country/Territory	Canada
City	Vancouver, BC
Period	29/08/09 → 31/08/09

Access to Document

10.1109/CSE.2009.159

Cite this

Yaseen, Q., & Panda, B. (2009). Knowledge acquisition and insider threat prediction in relational database systems. In Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009 (pp. 450-455). Article 5283156 (Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009; Vol. 3). https://doi.org/10.1109/CSE.2009.159

Yaseen, Qussai ; Panda, Brajendra. / Knowledge acquisition and insider threat prediction in relational database systems. Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009. 2009. pp. 450-455 (Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009).

@inproceedings{87743a40d7db4d18bb4f916ea026066a,

title = "Knowledge acquisition and insider threat prediction in relational database systems",

abstract = "This paper investigates the problem of knowledge acquisition by an unauthorized insider using dependencies between objects in relational databases. It defines various types of knowledge. In addition, it introduces the Neural Dependency and Inference Graph (NDIG), which shows dependencies among objects and the amount of knowledge that can be inferred about them using dependency relationships. Moreover, it introduces an algorithm to determine the knowledgebase of an insider and explains how insiders can broaden their knowledge about various relational database objects to which they lack appropriate access privileges. In addition, it demonstrates how NDIGs and knowledge graphs help in assessment of insider threats and what security officers can do to avoid such threats.",

author = "Qussai Yaseen and Brajendra Panda",

year = "2009",

doi = "10.1109/CSE.2009.159",

language = "English",

isbn = "9780769538235",

series = "Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009",

pages = "450--455",

booktitle = "Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009",

note = "2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009 ; Conference date: 29-08-2009 Through 31-08-2009",

}

Yaseen, Q & Panda, B 2009, Knowledge acquisition and insider threat prediction in relational database systems. in Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009., 5283156, Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009, vol. 3, pp. 450-455, 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009, Vancouver, BC, Canada, 29/08/09. https://doi.org/10.1109/CSE.2009.159

Knowledge acquisition and insider threat prediction in relational database systems. / Yaseen, Qussai; Panda, Brajendra.
Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009. 2009. p. 450-455 5283156 (Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009; Vol. 3).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Knowledge acquisition and insider threat prediction in relational database systems

AU - Yaseen, Qussai

AU - Panda, Brajendra

PY - 2009

Y1 - 2009

N2 - This paper investigates the problem of knowledge acquisition by an unauthorized insider using dependencies between objects in relational databases. It defines various types of knowledge. In addition, it introduces the Neural Dependency and Inference Graph (NDIG), which shows dependencies among objects and the amount of knowledge that can be inferred about them using dependency relationships. Moreover, it introduces an algorithm to determine the knowledgebase of an insider and explains how insiders can broaden their knowledge about various relational database objects to which they lack appropriate access privileges. In addition, it demonstrates how NDIGs and knowledge graphs help in assessment of insider threats and what security officers can do to avoid such threats.

AB - This paper investigates the problem of knowledge acquisition by an unauthorized insider using dependencies between objects in relational databases. It defines various types of knowledge. In addition, it introduces the Neural Dependency and Inference Graph (NDIG), which shows dependencies among objects and the amount of knowledge that can be inferred about them using dependency relationships. Moreover, it introduces an algorithm to determine the knowledgebase of an insider and explains how insiders can broaden their knowledge about various relational database objects to which they lack appropriate access privileges. In addition, it demonstrates how NDIGs and knowledge graphs help in assessment of insider threats and what security officers can do to avoid such threats.

UR - https://www.scopus.com/pages/publications/70849118355

U2 - 10.1109/CSE.2009.159

DO - 10.1109/CSE.2009.159

M3 - Conference contribution

AN - SCOPUS:70849118355

SN - 9780769538235

T3 - Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009

SP - 450

EP - 455

BT - Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009

T2 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009

Y2 - 29 August 2009 through 31 August 2009

ER -

Yaseen Q, Panda B. Knowledge acquisition and insider threat prediction in relational database systems. In Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - 2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009. 2009. p. 450-455. 5283156. (Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009). doi: 10.1109/CSE.2009.159

Knowledge acquisition and insider threat prediction in relational database systems

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this