A practical implementation of transparent encryption and separation of duties in enterprise databases: Protection against external and internal attacks on databases

ICEIS 2005 - Proceedings of the 7th International Conference on Enterprise Information Systems

Volumn , Issue , 2005, Pages 146-153

  Mattsson, Ulf T ^a  

^a Protegrity Corp   (United States)

Author keywords

Dial up networking; Internet services

Indexed keywords

BUILDING WALLS; DATA FIELDS; DATA LEVEL; DATA MINING MODELS; DATABASE RESEARCH; DATABASE SECURITY; DIAL-UP; ENCRYPTED DATABASE; ENCRYPTION METHODS; ENTERPRISE DATABASE; FIELD LEVEL; HARD DRIVES; INTERNET SERVICES; OPERATING REQUIREMENTS; POLICY DRIVEN; PRACTICAL EXPERIENCE; PRACTICAL IMPLEMENTATION; PROTECTIVE LAYERS; RELATIONAL DATABASE MANAGEMENT SYSTEMS; SECURITY ADMINISTRATOR; SECURITY PROBLEMS; SENSITIVE DATAS; SEPARATION OF DUTY; TRANSPARENT ENCRYPTION;

DATABASE SYSTEMS; INDUSTRIAL RESEARCH; INDUSTRY; INFORMATION SYSTEMS; INTERNET; MANAGEMENT INFORMATION SYSTEMS; NETWORK SECURITY; SERVERS;

CRYPTOGRAPHY;

EID: 78649295848     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (26)

1. Adam, 1989. Security-control methods for statistical databases. ACMComputing Surveys, 21(4):515- 556, Dec. 1989.
2. Agrawal, 2001. Watermarking relational databases. In 28th Int'l Conference on Very Large Databases, Hong Kong, China.
3. Agrawal, 2002. Hippocratic databases. In Proc. of the 28th Int'l Conference on Very Large Databases, Hong Kong, China, August 2002.
4. Agrawal, 2004. Implementing P3P using database technology. In Proc. of the 19th Int'l Conference on Data Engineering, Bangalore, India.
5. Agrawal, 2003. Path-based preference language for P3P. In Proc. of the 12th Int'l World Wide Web Conference, Budapest, Hungary, May 2003.
6. Denning, 1997. Cryptography and Data Security. Addison-Wesley Publishing Company, Inc., 1982.
7. Dierks, 1996. The TLS Protocol - Version 1.0, Internet-Draft. November 1997.
8. Freier, 1997. The SSL Protocol Version 3.0, Internet- Draft. November 1996.
9. Garnkel, 1997. Web Security & Commerce. O'Reilly & Associates, Inc., 1997.
10. Guthery, 1998. Smart Card Developer's Kit. Macmillan Technical Publishing, 1998.
11. Informix, 1994. Informix-Online Dynamic Server Administrator's Guide, Version 7.1. INFORMIX Software, Inc., 1994.
12. Koch, 1997. The Complete Reference. Osborne/McGraw- Hill, 1997.
13. Lagarias, 1990. Pseudo-random number generators in cryptography and number theory. InCryptology and Computational Number Theory, pages 115-143.American Mathematical Society, 1990.
14. Lindemann, 2001. Improving DES Hardware Throughput for Short Operations, IBM Research Report, 2001.
15. Lunt, 1993. A survey of intrusion detection techniques. Computer & Security, 12(4), 1993.
16. NIST, 1993. National Bureau of Standards FIPS Publication 180. Secure Hash Standard, 1993.
17. NIST, 1977. National Bureau of Standards FIPS Publication 46. Data Encryption Standard (DES), 1977.
18. Neuman, 1994. Kerberos: An authentication service for computer networks. IEEE Communications, 32(9):33-38, 1994.
19. San Jose Mercury News, 2000. Web site hacked; cards being canceled, Jan. 20, 2000.
20. Oracle, 1999. Technical White Paper. Database Security in Oracle8i, November 1999.
21. Rankl, 1997.Smart Card Handbook. John Wiley & Sons Ltd, 1997.
22. Rivest, 1992. The MD5 Message-Digest Algorithm, RFC1321 (I). April 1992.
23. Rivest, 1978. A method for obtaining digital signature and public key cryptosystems. Communications of the ACM, 21:120-126, February 1978.
24. Rosenberry, 1992. Understanding DCE. O'Reilly & Associates, Inc., 1992.
25. Shamir, 1979. How to share a secret. Communication of the ACM, 22(11):612-613, 1979.
26. Stinson, 1995. Cryptography; Theory and Practice. CRC Press, Inc., 1995.