摘要
在外包数据库系统模式下,组织将数据库业务外包给外部数据库服务器运行,外包服务提供者为数据拥有者及数据库用户提供远程的数据库创建、存储、更新与查询服务。由于外包服务器本身并非完全可信,外包数据库系统带来了一系列安全问题。本文讨论了数据库安全体系的分类,探讨了外包数据库的基本结构,综述了外包数据库在数据加密、密文查询策略、隐私保护、数据完整性验证及基于数据库水印技术的数据库版权保护等安全机制方面的研究现状,介绍了其研究进展,并展望了安全外包数据库系统的发展方向。研究认为,整合多种安全机制,兼顾安全性和可用性两方面的合理需求,是构建外包数据库系统的技术关键。
In the outsourced database model, organizations outsource their data management needs to an external service provider. The service provider offers mechanisms to create, store, update and query the database for the organizations. Since a server is almost never fully trusted, this model introduces several research issues related to data security. This paper discusses the classification of database security system, studies the architecture of outsourced database, overviews the state-of-the-art in database encryption, query policy of encrypted database, privacy protection, data integrity verification, and database copyright protection based on database watermarking, introduces the latest progress in security mechanisms of outsourced database, and looks ahead its future development. A conclusion is drawn at the end of this paper that it is critical to integrate various security mechanisms and trade off the security and the availability to build an outsourced database.
出处
《计算机科学》
CSCD
北大核心
2007年第2期152-156,195,共6页
Computer Science
基金
2005年江苏省高校自然科学研究计划(编号:05KJD520168)
2006年东华大学科技发展基金
关键词
外包数据库
数据库安全
数据库加密
数据完整性
数据库水印
Outsourced database, Database security, Database encryption, Data integrity, Database watermarking
