DB-SECaaS: a cloud-based protection system for document-oriented NoSQL databases

Ghazi, Yumna; Masood, Rahat; Rauf, Abid; Shibli, Muhammad Awais; Hassan, Osman

doi:10.1186/s13635-016-0040-5

Cited by 12 publications

(6 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We have identified the NoSQL databases are considered to be inherently insecure, and there is a need for better security standards and encryption protocols to provide secure data storage. Previous research studies have identified certain security measures that could help to mitigate the security attacks and lessen the security concerns in Big Data as mentioned earlier [35]. Our indepth analysis of the currently available NoSQL databases indicates that they offer either none or some security controls depending upon the vendor and license.…”

Section: Proposed Framework For Nosql Database Securitymentioning

confidence: 77%

“…For instance, the use of key distribution encryption mitigates the possibility of data alteration. Further, the use of key distribution with federation identity authorization mitigates attacks such as DoS, privilege abuse and injection [35]. By encrypting sensitive data before transit or with encrypted SSL connection, secure transmission or processing of data (data in transit) can be achieved.…”

Section: Proposed Framework For Nosql Database Securitymentioning

confidence: 99%

See 1 more Smart Citation

A Comparative Study of NOSQL System Vulnerabilities with Big Data

Fahd¹,

Venkatraman²,

Hammeed³

2019

IJMIT

View full text Add to dashboard Cite

With the emerging third wave in the development of the Internet, the past year has witnessed huge data exposure resulting in cyber-attacks that have increased four times as that of the previous year's record. In this digital era, businesses are making use of NoSQL technologies for managing such Big Data. However, the NoSQL database systems come with inherent security issues, which pose a major challenge to many organisations worldwide. There is a paucity of research studies for exposing the security threats and vulnerabilities of NoSQL technologies comprehensively. This paper presents an in-depth study of NoSQL security issues by performing a detailed comparative study of the security vulnerabilities identified in NoSQL database systems. A set of key security features offered by the four commonly used NoSQL database systems, namely Redis, Cassandra, MongoDB and Neo4j are analysed with an aim to identify their strengths and weaknesses. The vulnerabilities associated with built-in security, encryption, authentication/authorization and auditing that impact Big Data management are compared among these popular NoSQL database systems and the risk levels are identified. In addition, illustrations of possible injection attacks experimented with these NoSQL systems are provided. Finally, a high-level framework is proposed for NoSQL databases with considerations for security measures in Big Data deployments. The discussion forms a significant technical contribution for learners, application developers and Big Data deployers paving way for a better awareness and management of the NoSQL systems in an organization.

show abstract

Section: Proposed Framework For Nosql Database Securitymentioning

confidence: 77%

Section: Proposed Framework For Nosql Database Securitymentioning

confidence: 99%

A Comparative Study of NOSQL System Vulnerabilities with Big Data

Fahd¹,

Venkatraman²,

Hammeed³

2019

IJMIT

View full text Add to dashboard Cite

show abstract

“…This finding is consistent with the DIT because cloud computing as an evolving disruptive innovation brings with it many challenges such as data security that needs to be addressed to minimize data breaches. In the review of professional and academic literature, Ghazi et al (2016) proposed that SSL is a strategy to protect encrypted data in transit so that the right person receives the data in the correct form. Singh and Chatterjee (2017) indicated that a middleman attack to the data occurs in transit due to a lack of security configuration of an SSL.…”

Section: Secure Socket Layer (Ssl)mentioning

confidence: 99%

Security Limitations with Cloud Computing: Well-defined Security Measures Using Cloud Computing

2021

JIEA

View full text Add to dashboard Cite

Due to the ever-growing threat of security breaches that information technology (IT) organizations continually face, protecting customer information stored in the cloud is critical to ensure data integrity. Research shows that new categories of data breaches frequently emerge; thus, security strategies that build trust in consumers and improve system performance are crucial. The purpose of this qualitative multiple case study was to explore and analyze the strategies used by database administrators (DBAs) to secure data in a private infrastructure as a service (IaaS) cloud environment. The participants comprised of six DBAs from two IT companies in Baltimore, Maryland, with experience and knowledge of security strategies to secure data in private IaaS clouds. The disruptive innovation theory was the foundational framework for this study. Data were collected using semistructured interviews and a review of seven organizational documents. A thematic analysis was used to analyze the data. Two key themes are addressed in this article: importance of well-defined security measures in cloud computing and limitations of existing security controls in cloud computing. The findings of well-defined security strategies may benefit DBAs and IT organizations by providing strategies that may prevent future data breaches. Well-defined security strategies may protect an individual's data which, in turn, may promote individual well-being and build strong communities.

show abstract

“…In [18], a database security-as-a-service (DB-SECaaS) over a document-oriented database hosted in the cloud was proposed to ensure that access to the data is granted only to authorized users on a need-to-know basis. The system has a service-oriented architecture, which allows deploying different components for performing exact functions as distinct services.…”

Section: Related Workmentioning

confidence: 99%

Security Testing Tool for NoSQL Systems

Saleh¹

2019

JKAU Comp IT Sci

View full text Add to dashboard Cite

NoSQL systems are becoming more popular due to their inherent advantages and solutions it provides to the limits of a relational database. However, despite its benefits, it comes with security challenges. In this paper, an input validation mechanism architecture is proposed for Mongo DB to detect and prevent NoSQL injection attacks, the mechanism employs a Deterministic Finite Automaton (DFA) approach to detect and prevent attacks on NoSQL systems. Furthermore, a security comparison of some NoSQL systems is provided based on recent literature. The security features compared are authentication, authorization, data encryption and input validation. The proposed mechanism will improve the security of Mongo DB system because invalid inputs requests will be detected and prevented from being processed.

show abstract

DB-SECaaS: a cloud-based protection system for document-oriented NoSQL databases

Cited by 12 publications

References 23 publications

A Comparative Study of NOSQL System Vulnerabilities with Big Data

A Comparative Study of NOSQL System Vulnerabilities with Big Data

Security Limitations with Cloud Computing: Well-defined Security Measures Using Cloud Computing

Security Testing Tool for NoSQL Systems

Contact Info

Product

Resources

About