Authors:
Miguel Hernández Boza
1
and
Alfonso Muñoz Muñoz
2
Affiliations:
1
BBVA, Spain
;
2
i4s bbva, Spain
Keyword(s):
Graph Database, Privacy, Neo4j, OrientDB, Grafscan.
Related
Ontology
Subjects/Areas/Topics:
Data and Application Security and Privacy
;
Data Protection
;
Database Security and Privacy
;
Information and Systems Security
;
Security in Information Systems
Abstract:
Graph databases are an emerging technology useful in the field of cybersecurity, especially in the detection of
new threats based on the correlation of diverse sources of information. In our research, we had reviewed the
design of the most widespread graph databases, for example Neo4J and OrientDB, detecting several security
problems, improper default configurations and leaks, scanning the Internet during 9 months. To repeat our
proofs, we are releasing the first hacking tool for testing and detecting (in) secure graph databases, GraFScaN.