One of the greatest threats to a the security of a database system comes from within: Users who have been granted access to data using it in a malicious or illegitimate way. Our goal is to develop new types of statistical signatures for a user or role's behavior as they access a database. Using these signatures, we can identify non-standard behvaior that could be evidence of malicious activity.
Duc Thanh Anh Luong (RA), Varun Chandola (co-PI)
Prof. Shambhu Upadhyaya (co-PI), Prof. Oliver Kennedy (co-PI), Prof. Long Nguyen/Michigan (co-PI), Gokhan Kul (RA), Ting Xie (RA)
National Science Foundation (Grant No. 1409551)