10% Discount on All E-Books through IGI Global’s Online Bookstore Extended(10% discount on all e-books cannot be combined with most offers. Discount is valid on purchases made directly through IGI Global Online Bookstore (www.igi-global.com)
and may not be utilized by booksellers and distributors. Offer does not apply to e-Collections and exclusions of select titles may apply. Offer expires December 31, 2022.)Browse Titles

Special Offers
- 10% Discount on All E-Books through IGI Global’s Online Bookstore
  With the continued paper shortages and supply chain issues, we have been informed by our partners that there will be substantial delays in printing and shipping publications, especially as we approach the holiday season. To help incentive the electronic format and streamline access to the latest research, we are offering a 10% discount on all our e-books through IGI Global’s Online Bookstore. Hosted on the InfoSci^® platform, these titles feature no DRM, no additional cost for multi-user licensing, no embargo of content, full-text PDF & HTML format, and more.
  Browse Titles
- IGI Global to Convert an Additional 30 Journals to Full Gold Open Access for the 2022 Volume Year
  IGI Global is to convert an additional 30 journals to full gold open access (OA) for their 2022 volume year, which will expand their OA collection to contain 60 gold open access and one (1) platinum open access journal.
  Learn More
- All IGI Global Scholarly Journals Shift to "Digital Preferred" Format
  In response to the overwhelming demand for electronic content coupled with the mission to decrease the overall environmental impacts of print production and distribution, all IGI Global journals will shift into a digital preferred model for the 2022 volume year. Under this model, journals will become primarily available under electronic format and articles will be immediately available upon acceptance. Print subscriptions and print + electronic subscriptions will still be available, but for the print version, all articles that are published during the volume year will become available at the end of the year in a single (1) printed volume.
  Learn More
- IGI Global’s New DEI e-Book Collection
  Acquire Over 320+ E-Books on Diversity, Equity, and Inclusivity from a publisher that has been dedicated to DEI since its inception over 30 years ago. Now, benefit from a collection of all of our DEI e-Books at a 90% Discount.
  Learn More
- Offering a 5% Pre-Publication Discount on
  All Reference Books Ordered Through IGI Global’s Online Bookstore*
  To support customers with accessing the latest research, IGI Global is offering a 5% pre-publication discount on all hardcover, softcover, e-books, and hardcover + e-books titles.
  *5% discount offer is eligible on hardcover, softcover, e-books, and hardcover + e-books titles and is automatically applied directly to the shopping cart. Discount offer only valid on purchases made directly through IGI Global’s Online Bookstore and offer expires 30 days after the publication’s release. This automatic discount is not intended for use by book distributors or wholesalers.
  Browse Titles
Books
Journals
e-Collections
- - e-Collections
  - Transformative Open Access (Read & Publish)
Open Access
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - K-12 Online Learning Collection
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - COPE Membership
  - Fair Use Policy
  - Open Access Publishing
  - Author Services
  - FAQ
Catalogs
About Us
Newsroom

Detecting Advanced Persistent Threats in Oracle Databases: Methods and Techniques

Lynn Ray (University of Maryland – University College, USA) and Henry Felch (University of Maine – Augusta, USA)

Source Title: Strategic Information Systems and Technologies in Modern Organizations

DOI: 10.4018/978-1-5225-1680-4.ch004

OnDemand PDF Download:

Available

$37.50

Current Special Offers

No Current Special Offers

Abstract

Advanced persistent threats (APTs) have become a big problem for computer systems. Databases are vulnerable to these threats and can give attackers access to an organizations sensitive data. Oracle databases are at greater risk due to their heavy use as back-ends to corporate applications such as enterprise resource planning software. This chapter will describe a methodology for finding APTs hiding or operating deep within an Oracle database system. Using an understanding of Oracle normal operations provides a baseline to assist in discovering APT behavior. Incorporating these and other techniques such as database activity monitoring, machine learning, neural networks and honeypots/tokens can create a database intrusion detection system capable of finding these threats.

Chapter Preview

Top

Background

Before determining how to detect APTs, one needs to understand just what is an APT. Also the means of how they operate is important to determining how to detect them.

What Are They?

APTs are sophisticated cyber-attacks to get valuable information (Casenove & Kowalczewska, 2015). They use custom malware to gain leverage within a network. They may use a wide variety of tools and techniques to gain access to the target. They can vary their tools and techniques used depending on the target. The attackers are persistent and adjust their tactics to get around any protection mechanism in their way. They perform repetitive and continuous attacks over a long time. APT attacks use long-term campaigns and stealthy techniques (Chen, Desmet, & Huyens, 2014). Attackers use zero-day and and encryption to avoid detection. The attackers also consistently change their tactics as the defensive measures change (Kim, Cho, & Yeo, 2014). This makes them difficult to detect and stop. APTs can last for months to years depending on the attacker. It was believed that the skills needed to integrate an APT attack is too sophisticated for the average hacker. However, the tools available today require only basic skills to use and can be utilized to conduct an APT attack.

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference

Detecting Advanced Persistent Threats in Oracle Databases: Methods and Techniques

Abstract

Background

What Are They?

Complete Chapter List