New IV-Based database encryption scheme using TS block cipher
Current database security research classify four types of controls for the protection of data in databases: access controls, information flow controls, inference controls, and cryptographic controls. This paper covers the fourth type of controls, cryptographic controls in database security that p...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Penerbit UKM
2004
|
| Online Access: | http://journalarticle.ukm.my/2177/ http://journalarticle.ukm.my/2177/ http://journalarticle.ukm.my/2177/1/vol1_abstract7.pdf |
| Summary: | Current database security research classify four types of controls for the protection of
data in databases: access controls, information flow controls, inference controls, and
cryptographic controls. This paper covers the fourth type of controls, cryptographic
controls in database security that provides security of data stored in commercial RDBMS
like Oracle. The proposed database encryption scheme is based on TS Block and Stream
Ciphers, and is capable of protecting data at the data element, row, and column levels
using both block and stream encryptions. The design of the scheme’s key generation and
management system allows the controls of users’ access to encrypted data in a multilevel
fashion thus provide multilevel security. The scheme solves the problem of mandatory
and discretionary access controls in a given organization. The security of the scheme is
based on the fact that no cryptographic keys are stored in the database system. All
encryption and decryption keys are stored securely in smartcards thus providing
minimum cryptographic information to users. The design of the encryption scheme is
based on the provably strong ciphers with 128-bit keys which is currently infeasible to be
broken even by exhaustive key search. Implementation of the scheme has been conducted
successfully in Oracle RDBMS and complements the Oracle encryption security available |
|---|