Risk Aware Query Replacement Approach for Secure Databases Performance Management

• Published in: IEEE transactions on dependable and secure computing Vol. 12; no. 2; pp. 217 - 229
• Main Authors: Dia, Ousmane Amadou, Farkas, Csilla
• Format: Journal Article
• Language: English
• Published: Washington IEEE 01.03.2015; IEEE Computer Society
• Subjects: Access control; Availability; cost estimation; Cybersecurity; Data base management systems; Database systems; information retrieval; Monitoring; Performance management; Queries; Response time; risk adaptive access control; sql; Structured Query Language-SQL; Studies; System performance; XACML
• ISSN: 1545-5971; 1941-0018
• DOI: 10.1109/TDSC.2014.2306675

Large amount of data and increased demand to extract, analyze and derive knowledge from data are impairing nowadays performance of enterprise mission-critical systems such as databases. For databases, the challenging problem is to manage complex and sometimes non-optimized queries executed on enormous data sets stored across several tables. This generally results in increased query response time and loss of employees productivity. In this paper, we investigate the problem of enterprise computing resources availability. Our goal is to minimize performance degradation arising from resource intensive queries. We propose a risk aware approach that decouples the process of analyzing resource requirements of sql queries from their execution. We leverage XACML to control users' requests and to monitor database loads. This allows us to adjust available resources in a database system to computing resource needs of queries. A query can therefore run in a database if it does not severely impact the performance of the database. Otherwise, we propose to the requester a replacement query denoted what-if-query. Such query proposes results that are similar to the results of the requester's query, is secure and provides acceptable answers when it executes without compromising the performance of the database.