Recovery from malicious transactions

Paul Ammann; Sushil Jajodia; Peng Liu

doi:10.1109/TKDE.2002.1033782

Recovery from malicious transactions

Paul Ammann, Sushil Jajodia, Peng Liu

Research output: Contribution to journal › Article › peer-review

99 Scopus citations

Abstract

Preventive measures sometimes fail to deflect malicious attacks. In this paper, we adopt an information warfare perspective, which assumes success by the attacker in achieving partial, but not complete, damage. In particular, we work in the database context and consider recovery from malicious but committed transactions. Traditional recovery mechanisms do not address this problem, except for complete rollbacks, which undo the work of benign transactions as well as malicious ones, and compensating transactions, whose utility depends on application semantics. Recovery is complicated by the presence of benign transactions that depend, directly or indirectly, on the malicious transactions. We present algorithms to restore only the damaged part of the database. We identify the information that needs to be maintained for such algorithms. The initial algorithms repair damage to quiescent databases; subsequent algorithms increase availability by allowing new transactions to execute concurrently with the repair process. Also, via a study of benchmarks, we show practical examples of how offline analysis can efficiently provide the necessary data to repair the damage of malicious transactions.

Original language	English (US)
Pages (from-to)	1167-1185
Number of pages	19
Journal	IEEE Transactions on Knowledge and Data Engineering
Volume	14
Issue number	5
DOIs	https://doi.org/10.1109/TKDE.2002.1033782
State	Published - Sep 2002

All Science Journal Classification (ASJC) codes

Information Systems
Computer Science Applications
Computational Theory and Mathematics

Access to Document

10.1109/TKDE.2002.1033782

Fingerprint Dive into the research topics of 'Recovery from malicious transactions'. Together they form a unique fingerprint.

Cite this

@article{bd5956ced53b47ed8ebacfc514db9a81,

title = "Recovery from malicious transactions",

abstract = "Preventive measures sometimes fail to deflect malicious attacks. In this paper, we adopt an information warfare perspective, which assumes success by the attacker in achieving partial, but not complete, damage. In particular, we work in the database context and consider recovery from malicious but committed transactions. Traditional recovery mechanisms do not address this problem, except for complete rollbacks, which undo the work of benign transactions as well as malicious ones, and compensating transactions, whose utility depends on application semantics. Recovery is complicated by the presence of benign transactions that depend, directly or indirectly, on the malicious transactions. We present algorithms to restore only the damaged part of the database. We identify the information that needs to be maintained for such algorithms. The initial algorithms repair damage to quiescent databases; subsequent algorithms increase availability by allowing new transactions to execute concurrently with the repair process. Also, via a study of benchmarks, we show practical examples of how offline analysis can efficiently provide the necessary data to repair the damage of malicious transactions.",

author = "Paul Ammann and Sushil Jajodia and Peng Liu",

note = "Funding Information: This effort was sponsored by Rome Laboratory, Air Force Material Command, United States Air force, under agreement number F30602-97-1-0139.",

year = "2002",

month = sep,

doi = "10.1109/TKDE.2002.1033782",

language = "English (US)",

volume = "14",

pages = "1167--1185",

journal = "IEEE Transactions on Knowledge and Data Engineering",

issn = "1041-4347",

publisher = "IEEE Computer Society",

number = "5",

}

TY - JOUR

T1 - Recovery from malicious transactions

AU - Ammann, Paul

AU - Jajodia, Sushil

AU - Liu, Peng

N1 - Funding Information: This effort was sponsored by Rome Laboratory, Air Force Material Command, United States Air force, under agreement number F30602-97-1-0139.

PY - 2002/9

Y1 - 2002/9

N2 - Preventive measures sometimes fail to deflect malicious attacks. In this paper, we adopt an information warfare perspective, which assumes success by the attacker in achieving partial, but not complete, damage. In particular, we work in the database context and consider recovery from malicious but committed transactions. Traditional recovery mechanisms do not address this problem, except for complete rollbacks, which undo the work of benign transactions as well as malicious ones, and compensating transactions, whose utility depends on application semantics. Recovery is complicated by the presence of benign transactions that depend, directly or indirectly, on the malicious transactions. We present algorithms to restore only the damaged part of the database. We identify the information that needs to be maintained for such algorithms. The initial algorithms repair damage to quiescent databases; subsequent algorithms increase availability by allowing new transactions to execute concurrently with the repair process. Also, via a study of benchmarks, we show practical examples of how offline analysis can efficiently provide the necessary data to repair the damage of malicious transactions.

AB - Preventive measures sometimes fail to deflect malicious attacks. In this paper, we adopt an information warfare perspective, which assumes success by the attacker in achieving partial, but not complete, damage. In particular, we work in the database context and consider recovery from malicious but committed transactions. Traditional recovery mechanisms do not address this problem, except for complete rollbacks, which undo the work of benign transactions as well as malicious ones, and compensating transactions, whose utility depends on application semantics. Recovery is complicated by the presence of benign transactions that depend, directly or indirectly, on the malicious transactions. We present algorithms to restore only the damaged part of the database. We identify the information that needs to be maintained for such algorithms. The initial algorithms repair damage to quiescent databases; subsequent algorithms increase availability by allowing new transactions to execute concurrently with the repair process. Also, via a study of benchmarks, we show practical examples of how offline analysis can efficiently provide the necessary data to repair the damage of malicious transactions.

UR - http://www.scopus.com/inward/record.url?scp=0036709428&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0036709428&partnerID=8YFLogxK

U2 - 10.1109/TKDE.2002.1033782

DO - 10.1109/TKDE.2002.1033782

M3 - Article

AN - SCOPUS:0036709428

VL - 14

SP - 1167

EP - 1185

JO - IEEE Transactions on Knowledge and Data Engineering

JF - IEEE Transactions on Knowledge and Data Engineering

SN - 1041-4347

IS - 5

ER -