Detection of misuse or abuse of data by authorized access to database
First Claim
Patent Images
1. A method for identifying a misuse and/or abuse of authorized access to a database of a data gathering system by a user, comprising:
- a) constructing a user and/or terminal profile representing a pattern of database'"'"'s accesses;
b) monitoring user and/or terminal database access;
c) comparing the monitored database access'"'"' information with existing profile to determine anomalies and/or irregularities; and
d) identifying a potential misuse and/or abuse when an anomaly is detected.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention relates to a system for detecting misuse and/or abuse of data related to database done by a user with authorized access to a data system and its database. User behavior is monitored as to its nature of database access, analyzed to create, and compare to, a specific profile. No understanding for the meaning of data content is needed. Each deviation from normal pattern, stored in the profile, is checked in various parameters and ranked, reporting to a system owner.
130 Citations
9 Claims
-
1. A method for identifying a misuse and/or abuse of authorized access to a database of a data gathering system by a user, comprising:
- a) constructing a user and/or terminal profile representing a pattern of database'"'"'s accesses;
b) monitoring user and/or terminal database access;
c) comparing the monitored database access'"'"' information with existing profile to determine anomalies and/or irregularities; and
d) identifying a potential misuse and/or abuse when an anomaly is detected. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- a) constructing a user and/or terminal profile representing a pattern of database'"'"'s accesses;
Specification