Title

Database forensics

Document Type

Conference Proceeding

Source of Publication

Proceedings of the 2010 Information Security Curriculum Development Annual Conference, InfoSecCD'10

Publication Date

12-1-2010

Abstract

At the user or surface level, most Database Management System (DBMS) are similar. Most databases contain multiple tables, a standardized query language, primary key, foreign key, referential integrity, and metadata. With regard to physical file structures, concurrency mechanisms, security mechanisms, query optimization and datawarehouse techniques, databases may be radically different from each other. Most Forensic tools are too time consuming to be applied to large databases. Meanwhile, database tools such as oracle logminer and auditing features can assist in forensics, but were not created for that purpose. Many of these tools alter the database in ways that may complicate the use of their results in a legal proceeding. This paper analyzes the challenges of digital forensics, related literature, topics involved, current options for performing forensics on databases as well as considerations in teaching database forensics. Copyright © 2010 ACM.

ISBN

9781450302029

Publisher

ACM Press

First Page

62

Last Page

65

Disciplines

Computer Sciences

Keywords

Auditing, Database security, Forensics

Scopus ID

79952523746

Indexed in Scopus

yes

Open Access

no

Share

COinS