Research on Malicious Transaction Processing Method of Database System

2008 The Ninth International Conference on Web-Age Information Management Pub Date : 2008-07-20 DOI:10.1109/WAIM.2008.27

Chi Chen, D. Feng, Min Zhang, De-sheng Zhang, He-qun Xian

{"title":"Research on Malicious Transaction Processing Method of Database System","authors":"Chi Chen, D. Feng, Min Zhang, De-sheng Zhang, He-qun Xian","doi":"10.1109/WAIM.2008.27","DOIUrl":null,"url":null,"abstract":"Recovery from information attacks is difficult because DBMS is not designed to deal with malicious committed transactions. A few existing methods developed for this purpose rely on operation logs, which can't express the dependency between different transactions directly. These methods usually use rollback mechanism and abandon results of innocent transactions to maintain correctness, which may indeed be used as an approach to realize DOS attack. Hence, it's necessary to find out the malicious transaction and subsequent transactions depending on it precisely. In this paper, the definition of transaction recovery log is presented and each log item records the actions taken in one transaction, by which, we can calculate transactions' dependency directly. Based on the log model and the algorithm for log's creation, the dependency calculation and data recovery algorithm are studied, which are proofed to be complete and correct. Using transaction recovery log and the algorithm, database system can significantly enhance the performance of recovery for defensive information warfare.","PeriodicalId":217119,"journal":{"name":"2008 The Ninth International Conference on Web-Age Information Management","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-07-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 The Ninth International Conference on Web-Age Information Management","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WAIM.2008.27","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Recovery from information attacks is difficult because DBMS is not designed to deal with malicious committed transactions. A few existing methods developed for this purpose rely on operation logs, which can't express the dependency between different transactions directly. These methods usually use rollback mechanism and abandon results of innocent transactions to maintain correctness, which may indeed be used as an approach to realize DOS attack. Hence, it's necessary to find out the malicious transaction and subsequent transactions depending on it precisely. In this paper, the definition of transaction recovery log is presented and each log item records the actions taken in one transaction, by which, we can calculate transactions' dependency directly. Based on the log model and the algorithm for log's creation, the dependency calculation and data recovery algorithm are studied, which are proofed to be complete and correct. Using transaction recovery log and the algorithm, database system can significantly enhance the performance of recovery for defensive information warfare.

查看原文本刊更多论文

数据库系统恶意事务处理方法研究

从信息攻击中恢复是困难的，因为DBMS不是设计来处理恶意提交的事务的。为此目的开发的一些现有方法依赖于操作日志，而操作日志不能直接表示不同事务之间的依赖关系。这些方法通常使用回滚机制，放弃无害事务的结果来保持正确性，这确实可能被用作实现DOS攻击的一种方法。因此，有必要精确地找出恶意交易以及依赖于它的后续交易。本文给出了事务恢复日志的定义，每条日志记录了一个事务中所采取的动作，可以直接计算事务的依赖关系。在日志模型和日志生成算法的基础上，研究了依赖关系计算和数据恢复算法，证明了该算法的完整性和正确性。利用事务恢复日志和该算法，可以显著提高数据库系统防御信息战的恢复性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2008 The Ninth International Conference on Web-Age Information Management

自引率

0.00%

发文量