摘要
在数据库安全领域的研究中,“数据库管理者”对数据库安全带来的安全隐患越来越受到研究者的关注,尤其是在基于互联网的网络应用提供商(Internet service provider)模式的数据库系统中,这种安全威胁更为严重.传统的数据库访问控制(存取控制)方法,对此安全隐患不能提供有效的安全防范.密码学的安全数据库技术,因为其基于数学难解问题的计算复杂性,成为解决数据库安全问题的日渐重要的方法.本文分析了迄今为止各种不同的,针对分布式数据库应用的安全威胁,并对密码学安全数据库中的基于密码学的访问控制算法和加密数据库技术进行了综述,并对各类方法的密码学原理,算法特性以及其优缺点进行了分析和描述.
Researchers on security database concern more and more the security threats from DBA(database administrator), for its resulting in increasing crime to intemet commercial databases which exist in the mode of ASP(Application service provider) recently, and its theoretic and technical hardness. Traditional access control could not provide enough ,security for the purpose, cryptographic ,security database becomes a promising scheme favored by its computing complexity of mathematical difficulties. We analyse various and up to date ,security threats to distributed database application systems, and give an overview for cryptographic access control and encryption database technology. Each class and approach is described and evaluated with its cryptographic principle, algorithm characters and positive and negative performance. We focus on the term of cryptanalysis of the schemes, which is considered the crucial points of the technology.
出处
《电子学报》
EI
CAS
CSCD
北大核心
2006年第11期2043-2046,共4页
Acta Electronica Sinica
基金
国家自然科学基金(No.60573132)
国家自然科学基金(No.60503063)
深圳市项目(No.200507)
关键词
密码学
安全数据库
访问控制
加密数据库
cryptographic
,security database
access control
encryption database
