Unlock instant, AI-driven research and patent intelligence for your innovation.

Method and system for detecting database kernel invasion hidden object

A technology of hidden objects and detection methods, which is applied in the field of information security, can solve problems such as large hazards and undetectable database damage, and achieve the effect of eliminating potential safety hazards

Active Publication Date: 2013-01-16
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF4 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, the current database security risk scanning software cannot detect the damage caused by hackers to the database. After hackers invade the database, they often hide some database objects by tampering with the kernel objects, and use these hidden objects to hide the traces of intrusion and covertly collect information.
This type of risk is more hidden and more harmful

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for detecting database kernel invasion hidden object
  • Method and system for detecting database kernel invasion hidden object

Examples

Experimental program
Comparison scheme
Effect test

Embodiment example

[0026] Assume that a kernel intrusion hidden object detection is to be performed on an ORACLE10G database.

[0027] First of all, it is necessary to simulate hackers to intrude and tamper with the kernel objects of the database system:

[0028] (1) Log in to the database with the sys user.

[0029] (2) Create a user with DBA authority named 'HACKER'.

[0030] (3) Log in to the database with the HACKER user and create a JOB.

[0031] (4) Change the DBA_JOBS view, and add where powner!='HACKER' after the view code.

[0032] Then use the database kernel intrusion hidden object detection method to detect:

[0033] (1) Access the DBA_JOBS view of the oracle database, and obtain the JOB list through normal means.

[0034] (2) Then access the underlying system table sys.job$ of the database to obtain the real JOB list of the database.

[0035] (3) Comparing the two user lists, you will find that there is no JOB created by the HACKER user in the users obtained through normal chan...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of information security, and aims to provide a method and a system for detecting a database kernel invasion hidden object. The method comprises the following steps of: acquiring a database object list in a normal way, and acquiring another database object list through a bottom layer method; comparing the object list acquired in the normal way with the object list acquired through the bottom layer method, and finding out the database object list which cannot be acquired in the normal way, namely a hidden object list; and generating a scanning report, and supplying the hidden object list to a user. According to the method, the database object list acquired in the normal way is compared with the database object list acquired through the bottom layer method, so that database objects hidden by a hacker after a database is invaded can be found; and the detail scanning report is supplied, so that a database manager can timely repair the database and eliminate the potential security hazard of the database.

Description

technical field [0001] The invention relates to the technical field of information security. It specifically relates to the detection of hidden objects in the kernel of a database system, in particular a novel scanning detection method and system for improving the safety of the database system. Background technique [0002] The current database security risk scanning software mainly detects database system configuration risks and security vulnerabilities of the database software itself. Database configuration risks include improper allocation of various permissions, improper user management, weak passwords, etc. For example, if a dangerous stored procedure execution permission is assigned to a public role, members of the public role may use this stored procedure to perform privilege escalation operations. This type of risk can be eliminated by the user configuring the database correctly. The security loopholes of the database software itself refer to the security loopholes...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F17/30G06F21/50
Inventor 范渊杨永清刘海卫
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More