Information security – Monitoring or scanning of software or data including attack...
Reexamination Certificate
2006-10-10
2006-10-10
Moise, Emmanuel L. (Department: 2137)
Information security
Monitoring or scanning of software or data including attack...
C726S023000, C713S189000, C713S194000, C705S051000, C705S054000, C705S405000
Reexamination Certificate
active
07120933
ABSTRACT:
A method for detecting intrusion in a database, managed by an access control system, includes defining at least one intrusion detection profile and associating each user with one of said profiles. Each profile includes at least one item access rate. Further, the method determines whether a result of a query exceeds any one of the item access rates defined in the profile associated with the user. In such a case, the access control system is notified to alter the user authorization, thereby making the received request an unauthorized request, before the result is transmitted to the user. Such a method allows for a real time prevention of intrusion by letting the intrusion detection process interact directly with the access control system, and change the user authority dynamically as a result of the detected intrusion.
REFERENCES:
patent: 5278901 (1994-01-01), Shieh et al.
patent: 6405318 (2002-06-01), Rowland
patent: 2002/0023227 (2002-02-01), Sheymov et al.
patent: 0-999-490 (2000-05-01), None
Snapp et al. “A System for Distributed Intrusion Detection”, Mar. 1991, pp. 170-176.
European Patent Office, European Search Report, Pub. No. EP-1-315-065-A1 (The Hague, The Netherlands, Apr. 24, 2002).
World Intellectual Property Organization, International Search Report, Pub. No. WO 03/044638 A1 (Rijswijk, The Netherlands, Feb. 17, 2003).
Dorothy E. Denning, “An Intrusion-Detection Model,” IEEE Transactions on Software Engineering, vol. SE-13, No. 2 (Los Alamitos, CA, Feb. 1987), pp. 222-232.
R.K. Bhattacharyya, “Security of Network Element Databases Against Increasing Threats of Intrusion via Operations Interfaces,” Proceedings: The Institute of Electrical and Electronics Engineers, 1988 International Carnahan Conference on Security Technology: Crime Countermeasures (Lexington, KY, Oct. 5-7, 1988), pp. 51-64.
Edwards Angell Palmer & & Dodge LLP
Fields Courtney
Moise Emmanuel L.
Protegrity Corporation
Tosti Robert J.
LandOfFree
Method for intrusion detection in a database system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method for intrusion detection in a database system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method for intrusion detection in a database system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3627160