Network security with Fine Grained Databas Access Control model for Web Database
Main Article Content
Abstract
Web database is combination of database and web technology. Web database is placed on the Internet, there are many
security problems. Widespread availability of internet access coupled with the increase in number of web applications has led to a
surge in the amount of personal data stored online. The secrecy and the integrity are two important demands of security system. A
wide variety of attacks that can be grouped into the category of “injection attacks†can be used to maliciously attack the web
database server and database of a web application. These attacks consist of injecting specially formatted data into the application
with the hope of corrupting the internal functioning of the database server. When network security and the database access control
are addressed separately, the security systems are not optimized sufficiently as a whole. We propose a method of integrating
network security with criterion based access control to handle network security. Fine grained access control must be supported by
web databases to satisfy the requirements of privacy preserving and Internet-based applications. This access control mechanism is
applicable for any existing web databases and is capable to prevent many kinds of attacks, thus significantly decreases the web
databases' attack surface.
Â
Â
Keywords: Fine grained access control, Web database security, multiple policies, Privacy preservation, Intrusion detection
Downloads
Article Details
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.