论文信息 - An Architecture of a Secure Database for Networked Collaborative Activities

An Architecture of a Secure Database for Networked Collaborative Activities

Open networks can be used for many purposes, for example, e-commerce, e-government, and so on. Different from those conventional applications, we consider networked collaborative activities, for example networked research activities. This application might be very useful and research activities could be significantly promoted. However, we must solve many security problems. Among those problems, we focus on an architecture of a secure database in this paper. The design of such an architecture is not a trivial task, since we want to use multiple data types and the appropriate security operations should be exexuted. In addition to this problem, some data may need multiple security properties. In this case, multiple security operations should be executed in a well-organized way (e.g. with the ensured order such as signature-then-encryption). Thus, we design an architecture of a secure database, considering multiple data types and various security operations.

Kanta Matsuura | Michiharu Kudo | Akira Baba | Manabu Ando

[1] Steven M. Bellovin,et al. Problem Areas for the IP Security Protocols , 1996, USENIX Security Symposium.

[2] Ehud Gudes,et al. A Model for Evaluation and Administration of Security in Object-Oriented Databases , 1994, IEEE Trans. Knowl. Data Eng..

[3] W.A. Arbaugh,et al. Security for Virtual Private Intranets , 1998, Computer.

[4] Cheryl Madson,et al. The Use of HMAC-SHA-1-96 within ESP and AH , 1998, RFC.

[5] Randall J. Atkinson,et al. IP Encapsulating Security Payload (ESP) , 1995, RFC.

[6] Cheryl Madson,et al. The Use of HMAC-MD5-96 within ESP and AH , 1998, RFC.

[7] M. Kudo. Access Control Model with Provisional Actions , 2001 .

[8] Anup K. Ghosh. E-Commerce Security and Privacy , 2001, Advances in Information Security.

[9] George Pangalos,et al. A Flexible Role-Based Access Control Model for Multimedia Medical Image Database Systems , 2001, ISC.

[10] Klaus R. Dittrich,et al. Argos - A Configurable Access Control System for Interoperable Environments , 1995, DBSec.

[11] Elisa Bertino,et al. A unified framework for enforcing multiple access control policies , 1997, SIGMOD '97.

[12] Danielle Boulanger,et al. A Role-Based Model for Access Control in Database Federations , 2001, ICICS.

[13] Kanta Matsuura. Virtual private laboratories: concept and two building blocks , 2002, IEEE International Engineering Management Conference.