Study on the Technical Security Factor for the Implementation of Secure DB System

윤선희

Journal of The Korea Society of Computer and Information

Abbr : JKSCI
2014, 19(12), pp.143-152
Publisher : The Korean Society Of Computer And Information
Research Area : Computer Science

윤선희 ¹

¹숭의여자대학교

ABSTRACT

This paper introduces Database security to prevent the rapidly increasing issue of private informationleakage. The Database security examined in the paper separates into DB access control area and DBencryption area which further leads the paper to analyze the factors of the two areas and suggestnecessary elements for creating stable Database security. In addition, the paper examines previous DBsecurity programs by areas and analyzes pros and cons from the tested result. The experiment indicatedthat while DB access control presents less degradation and reduced the need to modify the existing DBMS since the access control operates at the end point of the network, DB encryption presented strength inprotecting the data from unauthorized access. On the other hand, DB access control is less useful inpreventing the attack in advance which leaves the log to enable tracking afterward while DB encryptioncan only be operated by limited types of Database and causes degradation due to system load and showshigher percentage of failure when creating the system. This paper examines characteristics of Databasesecurity areas in order to be used as a reference for institutions or companies seeking stable Databasesecurity.
KEYWORDS

Technical Security Factor, DB access control, DB Encryption
REFERENCES (15)

[web] / http://www.dbguide.net/db.db?cmd=view&boardUid=152806&boardConfigUid=9&categor yUid=216&boardIdx=146&boardStep=1 / http://www.dbguide.net/db.db?cmd=view&boardUid=152806&boardConfigUid=9&categoryUid=216&boardIdx=146&boardStep=1

[report] Eong-Jun Kang / 2012 / Sucessful DB Security System Implmentation Method / Softforum

[web] / DatabaseSecurity(Common-sensePrinciples) / http://www.governmentsecurity.org/articles/DatabaseSecurityCommon-sensePrinciples.php

[web] / http://www.kdb.or.kr/info/info_05_.php / http://www.kdb.or.kr/info/info_05_.php

[web] / http://cafe.naver.com/volthee/120 / http://cafe.naver.com/volthee/120

[web] / http://redkite777.tistory.com/315 / http://redkite777.tistory.com/315

[journal] 백종일 / 2009 / A Study on DB Security Problem Improvement of DB Masking by Security Grade / 한국컴퓨터정보학회논문지 / 한국컴퓨터정보학회 14(4) : 123~131

[report] / 2012 / Analysis Report of New Trend of DB Encryption and Security Technology / Financial Security Agency

[journal] Tae-Hee Park / 2008 / Database Encryption Police-Introduction of DataSecure / KSCI Review 16(1) : 61~72

[journal] 고영대 / 2014 / A Proposal of Personal Information DB Encryption Assurance Framework / 정보보호학회논문지 / 한국정보보호학회 24(2) : 397~409 / http://dx.doi.org/10.13089/JKIISC.2014.24.2.397

[journal] 신성윤 / 2014 / A Study on Definitions of Security Requirements for Identification and Authentication on the Step of Analysis / 한국컴퓨터정보학회논문지 / 한국컴퓨터정보학회 19(7) : 87~93

[journal] 주경수 / 2013 / An Object-Oriented Analysis and Design Methodology for Secure Database Design -focused on Role Based Access Control- / 한국컴퓨터정보학회논문지 / 한국컴퓨터정보학회 18(6) : 63~70

[journal] 서우석 / 2011 / A Design of Policy Treatment Techniques of Access Control Inference based Convergence Security System / 정보과학회논문지 : 정보통신 / 한국정보과학회 38(6) : 422~430

[report] Eui-Kil Lee / 2013 / Encrption Solution for Personal Information Security, Vometric Data Security Introduction / COMAS

[journal] 박현아 / 2012 / Comprehensive Study on Security and Privacy Requirements for Retrieval System over Encrypted Database / 정보보호학회논문지 / 한국정보보호학회 22(3) : 621~635
KCI Citation (1)

KJC Korea
Journal Central

Statistics

Tools