%0 Journal Article %1 barbara00.checksum %A Barbará, Daniel %A Goel, Rajni %A Jajodia, Sushil %D 2000 %J Advances in Database Technology — EDBT 2000 %K checksum %P 136--149 %T Using Checksums to Detect Data Corruption %U www.springerlink.com/index/47m6h208gr816p25.pdf %X In this paper, we consider the problem of malicious and intended corruption of data in a database, acting outside of the scope of the database management system. Although detecting an attacker who changes a set of database values at the disk level isa simple task (achievable by attaching signatures to each block of data), a more sophisticated attacker may corrupt the databy replacing the current data with copies of old block images, compromising the integrity of the data. To prevent successfulcompletion of this attack, we provide a defense mechanism that enormously increases the intruders workload, yet maintainsa low system cost during an authorized update. Our algorithm calculates and maintains two levels of signatures (checksum values)on blocks of data. The signatures are grouped in a manner that forces an extended series of block copying for any unauthorizedupdate. Using the available information on block sizes, block reference patterns and amount of concurrently active transactionsin the database, we calculate the length of this chain of copying, proving that the intruder has to perform a lot of workin order to go undetected. Therefore, our technique makes this type of attack very unlikely. Previous work has not addressedprotection methods against this knowledgeable and equipped intruder who is operating outside the database management system.

@article{barbara00.checksum, abstract = {In this paper, we consider the problem of malicious and intended corruption of data in a database, acting outside of the scope of the database management system. Although detecting an attacker who changes a set of database values at the disk level isa simple task (achievable by attaching signatures to each block of data), a more sophisticated attacker may corrupt the databy replacing the current data with copies of old block images, compromising the integrity of the data. To prevent successfulcompletion of this attack, we provide a defense mechanism that enormously increases the intruders workload, yet maintainsa low system cost during an authorized update. Our algorithm calculates and maintains two levels of signatures (checksum values)on blocks of data. The signatures are grouped in a manner that forces an extended series of block copying for any unauthorizedupdate. Using the available information on block sizes, block reference patterns and amount of concurrently active transactionsin the database, we calculate the length of this chain of copying, proving that the intruder has to perform a lot of workin order to go undetected. Therefore, our technique makes this type of attack very unlikely. Previous work has not addressedprotection methods against this knowledgeable and equipped intruder who is operating outside the database management system.}, added-at = {2008-10-31T14:38:59.000+0100}, author = {Barbará, Daniel and Goel, Rajni and Jajodia, Sushil}, biburl = {https://www.bibsonomy.org/bibtex/2c8c9cbbff2124e6039ddfe3179ac0767/ljiang}, description = {SpringerLink - Book Chapter}, interhash = {d7441a912501b7c32af554bdf61c154d}, intrahash = {c8c9cbbff2124e6039ddfe3179ac0767}, journal = {Advances in Database Technology — EDBT 2000}, keywords = {checksum}, pages = {136--149}, timestamp = {2008-10-31T14:38:59.000+0100}, title = {Using Checksums to Detect Data Corruption}, url = {www.springerlink.com/index/47m6h208gr816p25.pdf}, year = 2000 }