Binary Log Analysis on MySQL to Help Investigation Process Against Database Privillege Attacks

IF 0.5 4区计算机科学 Q4 COMPUTER SCIENCE, INFORMATION SYSTEMS International Journal of Cooperative Information Systems Pub Date : 2020-05-18 DOI:10.29040/IJCIS.V1I1.7

Siti Rokhmah, Ihsan Cahyo Utomo

{"title":"Binary Log Analysis on MySQL to Help Investigation Process Against Database Privillege Attacks","authors":"Siti Rokhmah, Ihsan Cahyo Utomo","doi":"10.29040/IJCIS.V1I1.7","DOIUrl":null,"url":null,"abstract":"Database is an important part in managing information, because a database is a collection of data that is processed to produce information. because of the importance of the database, many crimes are directed to attack the database, both attacks against access rights or attacks against the data itself. My SQL is a Database Management System (DBMS) that provides several facilities, one of which is the logging facility. Binary Log is a type of database log in the form of binary digits that contains some information including the record of the time of the transaction, the user who made the transaction and the order in the transaction. With the Binary Log, it can be seen when the transaction occurred, who made the transaction and what transaction occurred in the database. The recording of transactions in the Binary Log can be used as one way to carry out an investigation process in the event of an attack on the database. In this study the focus is on analyzing transaction records in binary logs, namely when, who, dam and what information can be taken from the Binary Log. The output of this research is a table of binary log investigation results and its relation to database attacks. Keywords— Binary Log, MySql, Database, Database Attack","PeriodicalId":54966,"journal":{"name":"International Journal of Cooperative Information Systems","volume":null,"pages":null},"PeriodicalIF":0.5000,"publicationDate":"2020-05-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Cooperative Information Systems","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.29040/IJCIS.V1I1.7","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Database is an important part in managing information, because a database is a collection of data that is processed to produce information. because of the importance of the database, many crimes are directed to attack the database, both attacks against access rights or attacks against the data itself. My SQL is a Database Management System (DBMS) that provides several facilities, one of which is the logging facility. Binary Log is a type of database log in the form of binary digits that contains some information including the record of the time of the transaction, the user who made the transaction and the order in the transaction. With the Binary Log, it can be seen when the transaction occurred, who made the transaction and what transaction occurred in the database. The recording of transactions in the Binary Log can be used as one way to carry out an investigation process in the event of an attack on the database. In this study the focus is on analyzing transaction records in binary logs, namely when, who, dam and what information can be taken from the Binary Log. The output of this research is a table of binary log investigation results and its relation to database attacks. Keywords— Binary Log, MySql, Database, Database Attack

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

MySQL二进制日志分析，帮助调查数据库特权攻击过程

数据库是管理信息的重要组成部分，因为数据库是经过处理以产生信息的数据集合。由于数据库的重要性，许多犯罪都是针对数据库的，无论是针对访问权限的攻击还是针对数据本身的攻击。My SQL是一个数据库管理系统(DBMS)，它提供了多种功能，其中之一就是日志功能。二进制日志是一种以二进制数字形式记录的数据库日志，它包含一些信息，包括交易的时间记录、交易的用户记录和交易的顺序记录。使用二进制日志，可以看到事务发生的时间、谁执行了事务以及数据库中发生了什么事务。在二进制日志中记录事务可以用作在数据库受到攻击时执行调查过程的一种方法。本研究的重点是分析二进制日志中的交易记录，即可以从二进制日志中获取交易记录的时间、对象、对象和信息。本研究的输出是一个二进制日志调查结果及其与数据库攻击的关系表。关键词:二进制日志，MySql，数据库，数据库攻击

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

International Journal of Cooperative Information Systems 工程技术-计算机：信息系统

CiteScore

2.30

自引率

0.00%

发文量

审稿时长

>12 weeks

期刊介绍： The paradigm for the next generation of information systems (ISs) will involve large numbers of ISs distributed over large, complex computer/communication networks. Such ISs will manage or have access to large amounts of information and computing services and will interoperate as required. These support individual or collaborative human work. Communication among component systems will be done using protocols that range from conventional ones to those based on distributed AI. We call such next generation ISs Cooperative Information Systems (CIS). The International Journal of Cooperative Information Systems (IJCIS) addresses the intricacies of cooperative work in the framework of distributed interoperable information systems. It provides a forum for the presentation and dissemination of research covering all aspects of CIS design, requirements, functionality, implementation, deployment, and evolution.