본문 바로가기
  • Home

Sensitive Personal Information Protection Model for RBAC System

  • Journal of The Korea Society of Computer and Information
  • Abbr : JKSCI
  • 2008, 13(5), pp.103-110
  • Publisher : The Korean Society Of Computer And Information
  • Research Area : Engineering > Computer Science

Hyung Jin Mun 1 서정석 2

1延大科學技術大學
2나사렛대학교

Accredited

ABSTRACT

Due to the development of the e-commerce, the shopping mall such as auction collects and manages the personal information of the customers for efficient service. However, because of the leakage of the personal information in auction, the image of the companies as well as the information subjects is damaged. Even though the organizations and the companies store the personal information as common sentences and protect using role based access control technique, the personal information can be leaked easily in case of getting the authority of the database administrator. And also the role based access control technique is not appropriate for protecting the sensitive information of the information subject. In this paper, we encrypted the sensitive information assigned by the information subject and then stored them into the database. We propose the personal policy based access control technique which controls the access to the information strictly according to the personal policy of the information subject. Through the proposed method we complemented the problems that the role based access control has and also we constructed the database safe from the database administrator. Finally, we get the control authority about the information of the information subject

Citation status

* References for papers published after 2022 are currently being built.