Title :
A new lightweight database encryption scheme transparent to applications
Author :
Liu, Lianzhong ; Gai, Jingfen
Author_Institution :
Sch. of Comput. Sci. & Eng., Beijing Univ. of Aeronaut. & Astronaut., Beijing
Abstract :
Database encryption, as a mechanism for active security enhancement, is a crucial technique to protect data confidentiality. Two important objectives of designing an encrypted database are high security and performance. In this paper, a new paradigm for database encryption is proposed in which database encryption can be provided as a service to applications with seamless access to encrypted database. Using such an encrypted data management model, applications can concentrate on their core businesses and protect data privacy against both malicious outsiders and the untrusted database service users without need to know encryption details. We propose a novel database encryption architecture with flexible data granularity and safe key management for high security and performance of database access. Security dictionary is used to keep encryption metadata safe based on the threat model. Then the implementation details are given to show how to transparently store and query encrypted database fields with the proposed scheme.
Keywords :
cryptography; database management systems; security of data; active security enhancement; data confidentiality protection; data privacy; encrypted data management model; flexible data granularity; lightweight database encryption; safe key management; security dictionary; Access control; Application software; Computer science; Cryptography; Data security; Databases; Dictionaries; Internet; Protection; Smart cards;
Conference_Titel :
Industrial Informatics, 2008. INDIN 2008. 6th IEEE International Conference on
Conference_Location :
Daejeon
Print_ISBN :
978-1-4244-2170-1
Electronic_ISBN :
1935-4576
DOI :
10.1109/INDIN.2008.4618081
