A Design of Solution to Database Security Based on Multi-Layer Intrusion Tolerance

Author

Lu, Jianhua ; Sun, Yuhai ; Shen, Qiuyuan ; Li, Yi

Author_Institution

Nanjing Artillery Acad., Langfang, China

fYear

2012

Firstpage

1571

Lastpage

1574

Abstract

The traditional solution to database security has a drawback that it can not deal with malicious attacks by persons with legal identity, and that, it is in general not cost-effective to users who have different security requirements for it only offers fixed security level. By adopting multi-layer security model, namely "user +OS +DBMS +transaction-level intrusion tolerance", it integrates redundancy and variety technology; by adopting integral security strategy and server-oriented intrusion tolerance technology, it realizes the survivability and availability of database, and the confidentiality and integrity of sensitive data. In this way, it can effectively resist malicious attacks by persons with legal identity and reduce the cost of security.

Keywords

data integrity; database management systems; security of data; service-oriented architecture; database availability; database security; database survivability; integral security strategy; legal identity; malicious attacks; multilayer intrusion tolerance; multilayer security model; security cost reduction; security requirements; sensitive data confidentiality; sensitive data integrity; server-oriented intrusion tolerance technology; user+OS+DBMS+transaction-level intrusion tolerance; Availability; Database systems; Intrusion detection; Law; Database security; Intrusion; tolerance;

fLanguage

English

Publisher

ieee

Conference_Titel

Industrial Control and Electronics Engineering (ICICEE), 2012 International Conference on

Conference_Location

Xi´an

Print_ISBN

978-1-4673-1450-3

Type

conf

DOI

10.1109/ICICEE.2012.414

Filename

6322704