Secure Groups: Enhanced Management of Encrypted Data in Databases

Modern database systems integrate diverse technology to implement data security. One important aspect of the security scheme is about using encryption to protect sensitive information while it remains stored in the database. We first review in this paper the general aspects of data security and analyze how the leading commercial databases address these issues. Then we discuss about applying encryption as a justified measure of increasing the data privacy and we identify a weak support from commercial database systems when a group of users owns encrypted data. Finally, we propose an enhanced mechanism, called secure groups, that intends to improve the management of encryption at a database level

[1]  David Alan Hanson,et al.  Data security , 1979, ACM-SE 17.

[2]  Huong Ngo Higgins,et al.  Corporate system security: towards an integrated management approach , 1999, Inf. Manag. Comput. Secur..

[3]  Stéphane Bressan,et al.  Introduction to Database Systems , 2005 .

[4]  C. J. Date An introduction to database systems (7. ed.) , 1999 .

[5]  M. Blasgen Database Systems , 1982, Science.

[6]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[7]  Marco Vieira,et al.  Towards a security benchmark for database management systems , 2005, 2005 International Conference on Dependable Systems and Networks (DSN'05).

[8]  Marlene Theriault,et al.  Oracle Security Handbook , 2001 .

[9]  염흥렬,et al.  [서평]「Applied Cryptography」 , 1997 .