Title :
A Web Database Security Model Using the Host Identity Protocol
Author :
Zhu, Xueyong ; Atwood, J. William
Author_Institution :
Network Inf. Center, Hefei
Abstract :
Web database security is a very important issue in e-commerce. This paper presents a new Web database security model. It utilizes the host identity protocol (HIP), which is being defined by the IETF, and a proposed user identity exchange, to achieve authentication of host identity and user identity, and combines it with the database system itself and encryption to guarantee Web database security and confidentiality of the data. For these purposes, we define a new concept of the user identity namespace for the user, and using it to realize the binding-authentication of the host identity and user identity of the client, and build a relationship between the host and the user. In the new model, we set up a high strength shell of security for the database.
Keywords :
Internet; cryptography; data privacy; database management systems; message authentication; protocols; Web database security model; binding-authentication; data confidentiality; e-commerce; encryption; host identity authentication; host identity protocol; user identity authentication; user identity namespace; Cryptography; Data security; Hip; Information security; Internet; Protocols; Public key; Service oriented architecture; Spatial databases; Web server; HIP; Host Identity; Model.; Security; User Identity; Web Database;
Conference_Titel :
Database Engineering and Applications Symposium, 2007. IDEAS 2007. 11th International
Conference_Location :
Banff, Alta.
Print_ISBN :
978-0-7695-2947-9
DOI :
10.1109/IDEAS.2007.4318115