CN1950778A - 数据库用户行为监控系统及方法 - Google Patents

数据库用户行为监控系统及方法 Download PDF

Info

Publication number
CN1950778A
CN1950778A CNA2005800146905A CN200580014690A CN1950778A CN 1950778 A CN1950778 A CN 1950778A CN A2005800146905 A CNA2005800146905 A CN A2005800146905A CN 200580014690 A CN200580014690 A CN 200580014690A CN 1950778 A CN1950778 A CN 1950778A
Authority
CN
China
Prior art keywords
database
user
data set
new data
instruction
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CNA2005800146905A
Other languages
English (en)
Chinese (zh)
Inventor
坂本绍夫
周忠光
瓦尼·G·唐
胡建国
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
IPLocks Inc
Original Assignee
IPLocks Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by IPLocks Inc filed Critical IPLocks Inc
Publication of CN1950778A publication Critical patent/CN1950778A/zh
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/554Detecting local intrusion or implementing counter-measures involving event detection and direct action
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • BPERFORMING OPERATIONS; TRANSPORTING
    • B29WORKING OF PLASTICS; WORKING OF SUBSTANCES IN A PLASTIC STATE IN GENERAL
    • B29CSHAPING OR JOINING OF PLASTICS; SHAPING OF MATERIAL IN A PLASTIC STATE, NOT OTHERWISE PROVIDED FOR; AFTER-TREATMENT OF THE SHAPED PRODUCTS, e.g. REPAIRING
    • B29C48/00Extrusion moulding, i.e. expressing the moulding material through a die or nozzle which imparts the desired form; Apparatus therefor
    • B29C48/03Extrusion moulding, i.e. expressing the moulding material through a die or nozzle which imparts the desired form; Apparatus therefor characterised by the shape of the extruded material at extrusion
    • B29C48/12Articles with an irregular circumference when viewed in cross-section, e.g. window profiles
    • BPERFORMING OPERATIONS; TRANSPORTING
    • B29WORKING OF PLASTICS; WORKING OF SUBSTANCES IN A PLASTIC STATE IN GENERAL
    • B29CSHAPING OR JOINING OF PLASTICS; SHAPING OF MATERIAL IN A PLASTIC STATE, NOT OTHERWISE PROVIDED FOR; AFTER-TREATMENT OF THE SHAPED PRODUCTS, e.g. REPAIRING
    • B29C48/00Extrusion moulding, i.e. expressing the moulding material through a die or nozzle which imparts the desired form; Apparatus therefor
    • B29C48/25Component parts, details or accessories; Auxiliary operations
    • B29C48/88Thermal treatment of the stream of extruded material, e.g. cooling
    • B29C48/91Heating, e.g. for cross linking
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F15/00Digital computers in general; Data processing equipment in general
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F17/00Digital computing or data processing equipment or methods, specially adapted for specific functions
    • G06F17/40Data acquisition and logging
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/552Detecting local intrusion or implementing counter-measures involving long-term monitoring or reporting
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2101Auditing as a secondary aspect
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2135Metering
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2137Time limited access, e.g. to a computer or data
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Mechanical Engineering (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Mathematical Physics (AREA)
  • Thermal Sciences (AREA)
  • Data Mining & Analysis (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
  • Debugging And Monitoring (AREA)
  • Alarm Systems (AREA)
CNA2005800146905A 2004-03-09 2005-02-16 数据库用户行为监控系统及方法 Pending CN1950778A (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/796,932 2004-03-09
US10/796,932 US20050203881A1 (en) 2004-03-09 2004-03-09 Database user behavior monitor system and method

Publications (1)

Publication Number Publication Date
CN1950778A true CN1950778A (zh) 2007-04-18

Family

ID=34919953

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2005800146905A Pending CN1950778A (zh) 2004-03-09 2005-02-16 数据库用户行为监控系统及方法

Country Status (10)

Country Link
US (1) US20050203881A1 (https=)
EP (1) EP1723490A1 (https=)
JP (1) JP2005259140A (https=)
KR (1) KR20070039478A (https=)
CN (1) CN1950778A (https=)
AU (1) AU2005225996A1 (https=)
CA (1) CA2559034A1 (https=)
IL (1) IL177935A0 (https=)
TW (1) TW200530805A (https=)
WO (1) WO2005093546A1 (https=)

Cited By (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101770626A (zh) * 2010-01-11 2010-07-07 中国联合网络通信集团有限公司 具有洗卡行为的代理商识别方法、装置及系统
CN102308299A (zh) * 2009-01-21 2012-01-04 林仲宇 以电话号码及授权码及来源识别码作为建置网络犯罪侦防之方法及其系统
CN102571481A (zh) * 2011-11-14 2012-07-11 北京安天电子设备有限公司 一种客户端监控状态分析的方法及系统
CN102722521A (zh) * 2012-04-24 2012-10-10 深圳市神盾信息技术有限公司 监控数据比对的方法及系统
CN103136253A (zh) * 2011-11-30 2013-06-05 腾讯科技(深圳)有限公司 获取信息的方法和装置
CN103500221A (zh) * 2013-10-15 2014-01-08 北京国双科技有限公司 分析服务数据库的监控方法和装置
CN101854340B (zh) * 2009-04-03 2015-04-01 瞻博网络公司 基于访问控制信息进行的基于行为的通信剖析
CN104852824A (zh) * 2014-02-19 2015-08-19 联想(北京)有限公司 一种信息处理方法和装置
CN104933096A (zh) * 2015-05-22 2015-09-23 北京奇虎科技有限公司 数据库的异常键识别方法、装置与数据系统
CN105009132A (zh) * 2013-03-11 2015-10-28 惠普发展公司,有限责任合伙企业 基于置信因子的事件关联
CN105302657A (zh) * 2015-11-05 2016-02-03 网易宝有限公司 一种异常情况分析方法和装置
CN106415578A (zh) * 2014-06-03 2017-02-15 三菱电机株式会社 日志分析装置和日志分析方法
CN106682101A (zh) * 2016-12-05 2017-05-17 福建天晴数码有限公司 一种数据库脚本运行异常检测的方法及系统
CN108140075A (zh) * 2015-07-27 2018-06-08 皮沃塔尔软件公司 将用户行为分类为异常
CN109255211A (zh) * 2017-07-12 2019-01-22 波音公司 移动安全对策
CN112149036A (zh) * 2020-09-28 2020-12-29 微梦创科网络科技(中国)有限公司 一种批量非正常互动行为的识别方法及系统
CN112204590A (zh) * 2018-04-09 2021-01-08 开利公司 检测智能建筑物中的异常行为
CN112740133A (zh) * 2018-09-24 2021-04-30 Abb瑞士股份有限公司 监测技术设备的技术状态的系统和方法
CN112765598A (zh) * 2019-10-21 2021-05-07 中国移动通信集团重庆有限公司 识别异常操作指令的方法、装置及设备
CN113407760A (zh) * 2021-08-18 2021-09-17 云上(江西)大数据发展有限公司 一种用于共享平台的政务数据分析系统

Families Citing this family (158)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7778981B2 (en) * 2000-12-01 2010-08-17 Netapp, Inc. Policy engine to control the servicing of requests received by a storage server
CA2476865A1 (en) 2002-02-22 2003-09-04 Iplocks, Inc. Method and apparatus for monitoring a database system
US7669237B2 (en) 2002-08-27 2010-02-23 Trust Digital, Llc Enterprise-wide security system for computer devices
WO2005064498A1 (en) * 2003-12-23 2005-07-14 Trust Digital, Llc System and method for enforcing a security policy on mobile devices using dynamically generated security profiles
US8255879B2 (en) * 2004-05-17 2012-08-28 Ca, Inc. Method and apparatus for improving a software product
US20060117004A1 (en) * 2004-11-30 2006-06-01 Hunt Charles L System and method for contextually understanding and analyzing system use and misuse
US7250855B2 (en) * 2004-12-27 2007-07-31 Sap Aktiengesellschaft False alarm mitigation using a sensor network
US7814075B2 (en) * 2004-12-30 2010-10-12 Oracle International Corporation Dynamic auditing
US8732856B2 (en) * 2004-12-30 2014-05-20 Oracle International Corporation Cross-domain security for data vault
US7593942B2 (en) * 2004-12-30 2009-09-22 Oracle International Corporation Mandatory access control base
US7831570B2 (en) * 2004-12-30 2010-11-09 Oracle International Corporation Mandatory access control label security
US7814076B2 (en) * 2004-12-30 2010-10-12 Oracle International Corporation Data vault
US8386449B2 (en) * 2005-01-27 2013-02-26 International Business Machines Corporation Customer statistics based on database lock use
US8495700B2 (en) * 2005-02-28 2013-07-23 Mcafee, Inc. Mobile data security system and methods
US8572676B2 (en) 2008-11-06 2013-10-29 Mcafee, Inc. System, method, and device for mediating connections between policy source servers, corporate repositories, and mobile devices
US7606801B2 (en) * 2005-06-07 2009-10-20 Varonis Inc. Automatic management of storage access control
US20070005665A1 (en) * 2005-06-30 2007-01-04 Lumigent Technologies, Inc. Separation of duties in a data audit system
US7631362B2 (en) * 2005-09-20 2009-12-08 International Business Machines Corporation Method and system for adaptive identity analysis, behavioral comparison, compliance, and application protection using usage information
US8069153B2 (en) * 2005-12-02 2011-11-29 Salesforce.Com, Inc. Systems and methods for securing customer data in a multi-tenant environment
US8321437B2 (en) * 2005-12-29 2012-11-27 Nextlabs, Inc. Detecting behavioral patterns and anomalies using activity profiles
US20070204345A1 (en) * 2006-02-28 2007-08-30 Elton Pereira Method of detecting computer security threats
US7555502B2 (en) * 2006-03-10 2009-06-30 Oracle International Corporation Detecting database events using recovery logs
EP1841166A1 (en) * 2006-03-28 2007-10-03 British Telecommunications Public Limited Company Subject identification
US8561146B2 (en) * 2006-04-14 2013-10-15 Varonis Systems, Inc. Automatic folder access management
FR2902546B1 (fr) * 2006-06-16 2008-12-26 Olfeo Sarl Procede et systeme de traitement de donnees de securite d'un reseau informatique.
US7934253B2 (en) * 2006-07-20 2011-04-26 Trustwave Holdings, Inc. System and method of securing web applications across an enterprise
US20080047009A1 (en) * 2006-07-20 2008-02-21 Kevin Overcash System and method of securing networks against applications threats
US20080034424A1 (en) * 2006-07-20 2008-02-07 Kevin Overcash System and method of preventing web applications threats
US8259568B2 (en) 2006-10-23 2012-09-04 Mcafee, Inc. System and method for controlling mobile device access to a network
US9747349B2 (en) * 2006-10-30 2017-08-29 Execue, Inc. System and method for distributing queries to a group of databases and expediting data access
US7979494B1 (en) 2006-11-03 2011-07-12 Quest Software, Inc. Systems and methods for monitoring messaging systems
WO2008094661A1 (en) * 2007-01-31 2008-08-07 Leader Technologies, Inc. Merchandise location system
US20080228819A1 (en) 2007-02-01 2008-09-18 7 Billion People, Inc. Use of behavioral portraits in web site analysis
JP4202398B2 (ja) * 2007-04-10 2008-12-24 Sky株式会社 誤操作防止システム
US7610459B2 (en) * 2007-04-11 2009-10-27 International Business Machines Corporation Maintain owning application information of data for a data storage system
US7613888B2 (en) 2007-04-11 2009-11-03 International Bsuiness Machines Corporation Maintain owning application information of data for a data storage system
US8239925B2 (en) * 2007-04-26 2012-08-07 Varonis Systems, Inc. Evaluating removal of access permissions
JP2008293173A (ja) * 2007-05-23 2008-12-04 Nec Corp 携帯電子機器、データ処理装置、データ通信システム、コンピュータプログラム、データ処理方法
US9032514B1 (en) * 2007-08-21 2015-05-12 Mcafee, Inc. Potential data leakage reporting system, method, and computer program product
US7783666B1 (en) * 2007-09-26 2010-08-24 Netapp, Inc. Controlling access to storage resources by using access pattern based quotas
US8032497B2 (en) * 2007-09-26 2011-10-04 International Business Machines Corporation Method and system providing extended and end-to-end data integrity through database and other system layers
US8131784B1 (en) 2007-09-26 2012-03-06 Network Appliance, Inc. Multiple node quota filter
US8438611B2 (en) 2007-10-11 2013-05-07 Varonis Systems Inc. Visualization of access permission status
US8959624B2 (en) * 2007-10-31 2015-02-17 Bank Of America Corporation Executable download tracking system
US8438612B2 (en) 2007-11-06 2013-05-07 Varonis Systems Inc. Visualization of access permission status
US8180886B2 (en) * 2007-11-15 2012-05-15 Trustwave Holdings, Inc. Method and apparatus for detection of information transmission abnormalities
US8214364B2 (en) * 2008-05-21 2012-07-03 International Business Machines Corporation Modeling user access to computer resources
JP5083042B2 (ja) * 2008-05-30 2012-11-28 富士通株式会社 アクセス制御ポリシーの遵守チェック用プログラム
US20090328210A1 (en) * 2008-06-30 2009-12-31 Microsoft Corporation Chain of events tracking with data tainting for automated security feedback
US7809824B2 (en) * 2008-09-29 2010-10-05 Yahoo! Inc. Classification and cluster analysis spam detection and reduction
WO2010088550A2 (en) * 2009-01-29 2010-08-05 Breach Security, Inc. A method and apparatus for excessive access rate detection
US8713068B2 (en) * 2009-06-11 2014-04-29 Yahoo! Inc. Media identification system with fingerprint database balanced according to search loads
US9641334B2 (en) * 2009-07-07 2017-05-02 Varonis Systems, Inc. Method and apparatus for ascertaining data access permission of groups of users to groups of data elements
US8443448B2 (en) 2009-08-20 2013-05-14 Federal Reserve Bank Of New York System and method for detection of non-compliant software installation
US8578507B2 (en) 2009-09-09 2013-11-05 Varonis Systems, Inc. Access permissions entitlement review
US10229191B2 (en) 2009-09-09 2019-03-12 Varonis Systems Ltd. Enterprise level data management
WO2011030324A1 (en) * 2009-09-09 2011-03-17 Varonis Systems, Inc. Enterprise level data management
US20110061093A1 (en) * 2009-09-09 2011-03-10 Ohad Korkus Time dependent access permissions
US20110145525A1 (en) * 2009-12-14 2011-06-16 International Business Machines Corporation Method and System for Storing and Operating on Advanced Historical Access Data
CN102111920B (zh) * 2009-12-23 2014-02-19 大唐移动通信设备有限公司 一种性能报表管理的方法及装置
US8800034B2 (en) 2010-01-26 2014-08-05 Bank Of America Corporation Insider threat correlation tool
US8782209B2 (en) * 2010-01-26 2014-07-15 Bank Of America Corporation Insider threat correlation tool
US8793789B2 (en) 2010-07-22 2014-07-29 Bank Of America Corporation Insider threat correlation tool
US9038187B2 (en) * 2010-01-26 2015-05-19 Bank Of America Corporation Insider threat correlation tool
US8868728B2 (en) * 2010-03-11 2014-10-21 Accenture Global Services Limited Systems and methods for detecting and investigating insider fraud
US8544100B2 (en) 2010-04-16 2013-09-24 Bank Of America Corporation Detecting secure or encrypted tunneling in a computer network
US8782794B2 (en) 2010-04-16 2014-07-15 Bank Of America Corporation Detecting secure or encrypted tunneling in a computer network
US8935384B2 (en) 2010-05-06 2015-01-13 Mcafee Inc. Distributed data revocation using data commands
US9177167B2 (en) 2010-05-27 2015-11-03 Varonis Systems, Inc. Automation framework
US10296596B2 (en) 2010-05-27 2019-05-21 Varonis Systems, Inc. Data tagging
EP2577444A4 (en) 2010-05-27 2014-04-02 Varonis Systems Inc DATA CLASSIFICATION
US9870480B2 (en) 2010-05-27 2018-01-16 Varonis Systems, Inc. Automatic removal of global user security groups
US8533787B2 (en) 2011-05-12 2013-09-10 Varonis Systems, Inc. Automatic resource ownership assignment system and method
KR101377462B1 (ko) * 2010-08-24 2014-03-25 한국전자통신연구원 CPU 및 메모리 상태를 이용한 DDoS 공격 차단 정책의 자동화된 제어 방법 및 장치
US9147180B2 (en) 2010-08-24 2015-09-29 Varonis Systems, Inc. Data governance for email systems
US9680839B2 (en) 2011-01-27 2017-06-13 Varonis Systems, Inc. Access permissions management system and method
EP2668562A4 (en) 2011-01-27 2015-05-20 Varonis Systems Inc SYSTEM AND METHOD FOR MANAGING ACCESS RIGHTS
US8909673B2 (en) 2011-01-27 2014-12-09 Varonis Systems, Inc. Access permissions management system and method
US8813227B2 (en) * 2011-03-29 2014-08-19 Mcafee, Inc. System and method for below-operating system regulation and control of self-modifying code
US9047464B2 (en) * 2011-04-11 2015-06-02 NSS Lab Works LLC Continuous monitoring of computer user and computer activities
EP2754049A4 (en) * 2011-09-09 2015-08-26 Hewlett Packard Development Co SYSTEMS AND METHOD FOR EVALUATING EVENTS BASED ON A REFERENCE BASE LINE AFTER THE TIME POSITION IN A SUCCESS OF EVENTS
US8875293B2 (en) 2011-09-22 2014-10-28 Raytheon Company System, method, and logic for classifying communications
US9058486B2 (en) 2011-10-18 2015-06-16 Mcafee, Inc. User behavioral risk assessment
CN103186733B (zh) * 2011-12-30 2016-01-27 中国移动通信集团广东有限公司 数据库用户行为管理系统和数据库用户行为管理方法
EP3522492A1 (en) 2012-03-22 2019-08-07 Triad National Security, LLC Path scanning for the detection of anomalous subgraphs, anomaly/change detection and network situational awareness
US8856923B1 (en) * 2012-06-29 2014-10-07 Emc Corporation Similarity-based fraud detection in adaptive authentication systems
US10592978B1 (en) * 2012-06-29 2020-03-17 EMC IP Holding Company LLC Methods and apparatus for risk-based authentication between two servers on behalf of a user
US11151515B2 (en) 2012-07-31 2021-10-19 Varonis Systems, Inc. Email distribution list membership governance method and system
US9124619B2 (en) 2012-12-08 2015-09-01 International Business Machines Corporation Directing audited data traffic to specific repositories
US9336388B2 (en) * 2012-12-10 2016-05-10 Palo Alto Research Center Incorporated Method and system for thwarting insider attacks through informational network analysis
RU2530210C2 (ru) * 2012-12-25 2014-10-10 Закрытое акционерное общество "Лаборатория Касперского" Система и способ выявления вредоносных программ, препятствующих штатному взаимодействию пользователя с интерфейсом операционной системы
US8793207B1 (en) * 2013-01-24 2014-07-29 Kaspersky Lab Zao System and method for adaptive control of user actions based on user's behavior
US8984151B1 (en) * 2013-02-05 2015-03-17 Google Inc. Content developer abuse detection
US9251363B2 (en) 2013-02-20 2016-02-02 Varonis Systems, Inc. Systems and methodologies for controlling access to a file system
CN103294966B (zh) * 2013-03-12 2016-02-24 中国工商银行股份有限公司 一种数据库的安全访问控制方法以及系统
US9384342B2 (en) 2013-05-10 2016-07-05 Blackberry Limited Methods and devices for providing warnings associated with credentials to be stored in a credential store
EP2801925B1 (en) * 2013-05-10 2019-07-17 BlackBerry Limited Methods and devices for detecting unauthorized access to credentials of a credential store
US9088556B2 (en) 2013-05-10 2015-07-21 Blackberry Limited Methods and devices for detecting unauthorized access to credentials of a credential store
CN103455575A (zh) * 2013-08-22 2013-12-18 北京炎黄盈动科技发展有限责任公司 数据统计分析方法和装置
US9471249B2 (en) 2013-09-04 2016-10-18 International Business Machines Corporation Intermittent sampling of storage access frequency
US9471250B2 (en) 2013-09-04 2016-10-18 International Business Machines Corporation Intermittent sampling of storage access frequency
US20150121461A1 (en) * 2013-10-24 2015-04-30 Cyber-Ark Software Ltd. Method and system for detecting unauthorized access to and use of network resources with targeted analytics
US9712548B2 (en) 2013-10-27 2017-07-18 Cyber-Ark Software Ltd. Privileged analytics system
US9195669B2 (en) * 2014-02-26 2015-11-24 Iboss, Inc. Detecting and managing abnormal data behavior
US9497206B2 (en) 2014-04-16 2016-11-15 Cyber-Ark Software Ltd. Anomaly detection in groups of network addresses
US10015329B2 (en) * 2014-05-16 2018-07-03 Ricoh Company, Ltd. Information management apparatus, information management method, and information device
EP3152697A4 (en) * 2014-06-09 2018-04-11 Northrop Grumman Systems Corporation System and method for real-time detection of anomalies in database usage
US10530790B2 (en) * 2014-09-25 2020-01-07 Oracle International Corporation Privileged session analytics
US10482404B2 (en) * 2014-09-25 2019-11-19 Oracle International Corporation Delegated privileged access grants
US10027689B1 (en) * 2014-09-29 2018-07-17 Fireeye, Inc. Interactive infection visualization for improved exploit detection and signature generation for malware and malware families
US9565203B2 (en) * 2014-11-13 2017-02-07 Cyber-Ark Software Ltd. Systems and methods for detection of anomalous network behavior
WO2016094472A1 (en) * 2014-12-09 2016-06-16 Trustlayers, Inc. System and method for enabling tracking of data usage
CN104504116B (zh) * 2014-12-30 2018-08-28 青岛海信网络科技股份有限公司 一种实时数据库的存储方法
EP3075315B1 (en) * 2015-04-02 2024-02-07 Essilor International System and computer-implemented method for monitoring the visual behavior of a person
US20160306967A1 (en) * 2015-04-17 2016-10-20 Symantec Corporation Method to Detect Malicious Behavior by Computing the Likelihood of Data Accesses
US10263929B2 (en) * 2015-05-08 2019-04-16 International Business Machines Corporation Cloud based chat governance system based on behavioral patterns and situational-awareness
US9882852B2 (en) * 2015-05-11 2018-01-30 Whatsapp Inc. Techniques for escalating temporary messaging bans
US9756067B2 (en) * 2015-08-10 2017-09-05 Accenture Global Services Limited Network security
US12500823B2 (en) * 2023-07-27 2025-12-16 Qomplx Llc System and method for enterprise-wide data utilization tracking and risk reporting
US10021120B1 (en) 2015-11-09 2018-07-10 8X8, Inc. Delayed replication for protection of replicated databases
US10043026B1 (en) * 2015-11-09 2018-08-07 8X8, Inc. Restricted replication for protection of replicated databases
CN105429826A (zh) * 2015-12-25 2016-03-23 北京奇虎科技有限公司 一种数据库集群的故障检测方法和装置
CN105868256A (zh) * 2015-12-28 2016-08-17 乐视网信息技术(北京)股份有限公司 处理用户行为数据的方法和系统
US10740207B2 (en) * 2016-01-19 2020-08-11 Unisys Corporation Capturing and comparing database performances across platforms
KR101905771B1 (ko) * 2016-01-29 2018-10-11 주식회사 엔오디비즈웨어 시스템 환경 및 사용자 행동 분석 기반의 자기 방어 보안 서버와 이의 작동 방법
US11120343B2 (en) 2016-05-11 2021-09-14 Cisco Technology, Inc. Intelligent anomaly identification and alerting system based on smart ranking of anomalies
US11706227B2 (en) 2016-07-20 2023-07-18 Varonis Systems Inc Systems and methods for processing access permission type-specific access permission requests in an enterprise
CN106027577B (zh) * 2016-08-04 2019-04-30 四川无声信息技术有限公司 一种异常访问行为检测方法及装置
CN106453355A (zh) * 2016-10-25 2017-02-22 东软集团股份有限公司 数据分析方法及装置
US10489584B2 (en) 2017-02-14 2019-11-26 Microsoft Technology Licensing, Llc Local and global evaluation of multi-database system
NO20170249A1 (en) * 2017-02-20 2018-08-21 Jazz Networks Ltd Secure access by behavior recognition
US10977361B2 (en) 2017-05-16 2021-04-13 Beyondtrust Software, Inc. Systems and methods for controlling privileged operations
US20190005501A1 (en) * 2017-06-29 2019-01-03 Paypal, Inc. System and method for malware detection
US11087330B2 (en) 2017-06-29 2021-08-10 Paypal, Inc. System and method for malware detection
CN107491499B (zh) * 2017-07-27 2018-09-04 杭州中奥科技有限公司 一种基于非结构化数据的舆情预警方法
US20190108256A1 (en) * 2017-10-09 2019-04-11 Switch Commerce, Llc System for scalable database security
US10685107B2 (en) * 2017-10-24 2020-06-16 International Business Machines Corporation Detection of malicious intent in privileged identity environments
US10691827B2 (en) * 2017-12-18 2020-06-23 International Business Machines Corporation Cognitive systems for allocating medical data access permissions using historical correlations
CN108616389B (zh) * 2018-04-10 2021-09-17 深信服科技股份有限公司 基于云服务器的网络评估方法、设备、存储介质及装置
GB2580467B (en) * 2018-09-20 2024-12-04 Idera Inc Database access, monitoring, and control system and method for reacting to suspicious database activities
CN109561092B (zh) * 2018-12-03 2021-01-26 北京安华金和科技有限公司 基于数据流量及数据探测结果进行安全态势建模的方法
CN111352992B (zh) * 2018-12-21 2023-09-29 北京金山云网络技术有限公司 数据一致性检测方法、装置及服务器
US11528149B2 (en) 2019-04-26 2022-12-13 Beyondtrust Software, Inc. Root-level application selective configuration
US20200356568A1 (en) 2019-05-08 2020-11-12 Datameer, Inc. Pre-Emptive Database Processing For Performance Enhancement In A Hybrid Multi-Cloud Database Environment
CN110866278A (zh) * 2019-11-14 2020-03-06 吉林亿联银行股份有限公司 一种数据库实时入侵阻断方法及装置
CN111177779B (zh) * 2019-12-24 2023-04-25 深圳昂楷科技有限公司 数据库审计方法、其装置、电子设备及计算机存储介质
JP7004479B2 (ja) 2020-01-23 2022-01-21 三菱電機株式会社 モデル生成装置、モデル生成方法及びモデル生成プログラム
US20230084969A1 (en) * 2020-03-04 2023-03-16 Nec Corporation Database system, database management method, and non-transitory computer-readable medium storing program
KR102395550B1 (ko) 2020-09-29 2022-05-09 주식회사 에임시스 기밀정보 분석 방법 및 장치
US11755697B2 (en) 2021-01-04 2023-09-12 Bank Of America Corporation Secure access control framework using dynamic resource replication
CN114138623A (zh) * 2021-11-29 2022-03-04 杭州迪普科技股份有限公司 监控用户操作的装置及方法
CN114553535A (zh) * 2022-02-22 2022-05-27 中国建设银行股份有限公司 用户行为异常的告警方法及装置
CN115514562B (zh) * 2022-09-22 2023-03-28 国网山东省电力公司 一种用于数据安全预警方法及系统
CN116319099A (zh) * 2023-05-22 2023-06-23 威海海洋职业学院 一种多终端的财务数据管理方法和系统
EP4502842A1 (en) * 2023-08-04 2025-02-05 WithSecure Corporation Arrangement and method of threat detection in a computer or computer network
US20250061218A1 (en) * 2023-08-16 2025-02-20 Jpmorgan Chase Bank, N.A. Method and system for the implementation of an auditable layer of protection for database content
US20250209158A1 (en) * 2023-12-22 2025-06-26 Atlassian Pty Ltd. Enhanced access threat detection for collaborative software application frameworks
CN118555135B (zh) * 2024-07-26 2024-10-01 国网思极网安科技(北京)有限公司 基于态势感知的网络信息分析方法、装置、设备与介质

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH02304643A (ja) * 1989-05-19 1990-12-18 Hitachi Ltd データベース管理システムにおける異常データの検査方法
JPH09265473A (ja) * 1996-03-28 1997-10-07 Hitachi Software Eng Co Ltd 個人情報管理システム
JPH10198418A (ja) * 1997-01-14 1998-07-31 Toshiba Corp 監視制御システムのヒューマンインタフェース装置
US6041327A (en) * 1997-12-12 2000-03-21 Telefonaktiebolaget Lm Ericsson Implementation of notification capabilities in relational databases
JP2000148276A (ja) * 1998-11-05 2000-05-26 Fujitsu Ltd セキュリティ監視装置,セキュリティ監視方法およびセキュリティ監視用プログラム記録媒体
US6597777B1 (en) * 1999-06-29 2003-07-22 Lucent Technologies Inc. Method and apparatus for detecting service anomalies in transaction-oriented networks
EP1315065B1 (en) * 2001-11-23 2007-10-10 Protegrity Research & Development Method for intrusion detection in a database system
CA2476865A1 (en) * 2002-02-22 2003-09-04 Iplocks, Inc. Method and apparatus for monitoring a database system
JP4084971B2 (ja) * 2002-08-07 2008-04-30 三菱電機株式会社 電子データ交換システムにおけるデータ保護装置及びデータ保護方法並びにそれに用いるプログラム
US20050086529A1 (en) * 2003-10-21 2005-04-21 Yair Buchsbaum Detection of misuse or abuse of data by authorized access to database

Cited By (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102308299A (zh) * 2009-01-21 2012-01-04 林仲宇 以电话号码及授权码及来源识别码作为建置网络犯罪侦防之方法及其系统
CN102308299B (zh) * 2009-01-21 2013-12-18 林仲宇 以电话号码及授权码及来源识别码作为建置网络犯罪侦防之方法及其系统
CN101854340B (zh) * 2009-04-03 2015-04-01 瞻博网络公司 基于访问控制信息进行的基于行为的通信剖析
CN101770626A (zh) * 2010-01-11 2010-07-07 中国联合网络通信集团有限公司 具有洗卡行为的代理商识别方法、装置及系统
CN102571481A (zh) * 2011-11-14 2012-07-11 北京安天电子设备有限公司 一种客户端监控状态分析的方法及系统
CN102571481B (zh) * 2011-11-14 2014-07-16 北京安天电子设备有限公司 一种客户端监控状态分析的方法及系统
CN103136253A (zh) * 2011-11-30 2013-06-05 腾讯科技(深圳)有限公司 获取信息的方法和装置
CN102722521A (zh) * 2012-04-24 2012-10-10 深圳市神盾信息技术有限公司 监控数据比对的方法及系统
CN102722521B (zh) * 2012-04-24 2015-01-21 深圳市神盾信息技术有限公司 监控数据比对的方法及系统
CN105009132A (zh) * 2013-03-11 2015-10-28 惠普发展公司,有限责任合伙企业 基于置信因子的事件关联
CN103500221A (zh) * 2013-10-15 2014-01-08 北京国双科技有限公司 分析服务数据库的监控方法和装置
CN104852824A (zh) * 2014-02-19 2015-08-19 联想(北京)有限公司 一种信息处理方法和装置
CN106415578A (zh) * 2014-06-03 2017-02-15 三菱电机株式会社 日志分析装置和日志分析方法
CN106415578B (zh) * 2014-06-03 2018-07-03 三菱电机株式会社 日志分析装置和日志分析方法
CN104933096A (zh) * 2015-05-22 2015-09-23 北京奇虎科技有限公司 数据库的异常键识别方法、装置与数据系统
CN104933096B (zh) * 2015-05-22 2018-06-19 北京奇虎科技有限公司 数据库的异常键识别方法、装置与数据系统
CN108140075A (zh) * 2015-07-27 2018-06-08 皮沃塔尔软件公司 将用户行为分类为异常
CN105302657A (zh) * 2015-11-05 2016-02-03 网易宝有限公司 一种异常情况分析方法和装置
CN106682101B (zh) * 2016-12-05 2019-09-20 福建天晴数码有限公司 一种数据库脚本运行异常检测的方法及系统
CN106682101A (zh) * 2016-12-05 2017-05-17 福建天晴数码有限公司 一种数据库脚本运行异常检测的方法及系统
CN109255211A (zh) * 2017-07-12 2019-01-22 波音公司 移动安全对策
CN109255211B (zh) * 2017-07-12 2023-09-15 波音公司 移动安全对策
CN112204590A (zh) * 2018-04-09 2021-01-08 开利公司 检测智能建筑物中的异常行为
US12019432B2 (en) 2018-09-24 2024-06-25 Abb Schweiz Ag System and methods monitoring the technical status of technical equipment
CN112740133A (zh) * 2018-09-24 2021-04-30 Abb瑞士股份有限公司 监测技术设备的技术状态的系统和方法
CN112740133B (zh) * 2018-09-24 2025-01-07 Abb瑞士股份有限公司 监测技术设备的技术状态的系统和方法
CN112765598A (zh) * 2019-10-21 2021-05-07 中国移动通信集团重庆有限公司 识别异常操作指令的方法、装置及设备
CN112149036A (zh) * 2020-09-28 2020-12-29 微梦创科网络科技(中国)有限公司 一种批量非正常互动行为的识别方法及系统
CN112149036B (zh) * 2020-09-28 2023-11-10 微梦创科网络科技(中国)有限公司 一种批量非正常互动行为的识别方法及系统
CN113407760A (zh) * 2021-08-18 2021-09-17 云上(江西)大数据发展有限公司 一种用于共享平台的政务数据分析系统

Also Published As

Publication number Publication date
WO2005093546A1 (en) 2005-10-06
US20050203881A1 (en) 2005-09-15
CA2559034A1 (en) 2005-10-06
JP2005259140A (ja) 2005-09-22
TW200530805A (en) 2005-09-16
IL177935A0 (en) 2006-12-31
AU2005225996A1 (en) 2005-10-06
EP1723490A1 (en) 2006-11-22
KR20070039478A (ko) 2007-04-12

Similar Documents

Publication Publication Date Title
CN1950778A (zh) 数据库用户行为监控系统及方法
CN106411578B (zh) 一种适应于电力行业的网站监控系统及方法
AU2003219885B2 (en) Method and apparatus for monitoring a database system
Salem et al. A survey of insider attack detection research
EP2566130B1 (en) Automatic analysis of security related incidents in computer networks
US9344457B2 (en) Automated feedback for proposed security rules
US20140279641A1 (en) Identity and asset risk score intelligence and threat mitigation
CN113542279A (zh) 一种网络安全风险评估方法、系统及装置
EP3794481A1 (en) Creation and verification of behavioral baselines for the detection of cybersecurity anomalies using machine learning techniques
CN113691498A (zh) 一种电力物联终端安全状态评估方法、装置及存储介质
RU2610395C1 (ru) Способ расследования распределенных событий компьютерной безопасности
Prabu et al. An automated intrusion detection and prevention model for enhanced network security and threat assessment
CN118250088A (zh) 一种基于蜜罐技术的网络安全服务系统
CN120896718A (zh) 审计数据的异常检测方法、装置、电子设备及存储介质
Ficco et al. A weight-based symptom correlation approach to SQL injection attacks
KR20200054495A (ko) 보안관제 서비스 방법 및 그를 위한 장치
CN118378281A (zh) 信任评估方法、装置、电子设备和存储介质
US20260025408A1 (en) Continuous security posture validation and authorization to operate based on automated intelligent bots
Dang et al. Detecting, Monitoring and Preventing Database Security Breaches in a Housing-Based Outsourcing Model
CN1760786A (zh) 检测非法访问计算机网络的系统和方法
CN120930133A (zh) 一种数据流动监管方法和系统
Jaiswal et al. Database intrusion prevention cum detection system with appropriate response
CN121770899A (zh) 基于零信任架构的Azure虚拟桌面微隔离监控方法及系统
CN119854350A (zh) 基于ai学习的网络安全信息防护方法
CN121034294A (zh) 基于大语言模型的Web系统内外网融合分析监控方法、系统、设备及介质

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
AD01 Patent right deemed abandoned

Effective date of abandoning: 20070418

C20 Patent right or utility model deemed to be abandoned or is abandoned