• International Journal of Computer Science & Network Security
• /
• 제24권1호
• /
• pp.140-150
• /
• 2024

Database-as-a-Service is one of the prime services provided by Cloud Computing. It provides data storage and management services to individuals, enterprises and organizations on pay and uses basis. In which any enterprise or organization can outsource its databases to the Cloud Service Provider (CSP) and query the data whenever and wherever required through any devices connected to the internet. The advantage of this service is that enterprises or organizations can reduce the cost of establishing and maintaining infrastructure locally. However, there exist some database security, privacychallenges and query performance issues to access data, to overcome these issues, in our recent research, developed a database security model using a deterministic encryption scheme, which improved query execution performance and database security level.As this model is implemented using a deterministic encryption scheme, it may suffer from chosen plain text attack, to overcome this issue. In this paper, we proposed a new model for cloud database security using nondeterministic encryption, order preserving encryption, homomorphic encryptionand database distribution schemes, andour proposed model supports execution of queries with equality check, range condition and aggregate operations on encrypted cloud database without decryption. This model is more secure with optimal query execution performance.

• International journal of advanced smart convergence
• /
• 제5권1호
• /
• pp.16-22
• /
• 2016

The database integration is being emphasized to one way of the companies collaboration. To database integration, companies are use like one database what their own, it can be provided more efficient service to customer. However, there exist some difficulty to database integration. that is the database security and database heterogeneity problems. In this paper, we proposed the MapReduce based p2p DBaaS hub system to solve database heterogeneity problem. The proposed system provides an environment for companies in the P2P cloud to integrate a database of each other. The proposed system uses DBaaS Hub for a collection of data in the P2P cloud, and use MapReduce for integrating the collected data.

• 정보과학회 논문지
• /
• 제43권9호
• /
• pp.1052-1059
• /
• 2016

클라우드 컴퓨팅 시스템의 주요 역할은 신뢰받지 않은 클라우드 서버의 데이터베이스 실행이 키 관리의 복잡성을 요구하기 때문에 중요한 이슈가 되고 있다. 본 연구는 키 실행을 최소화하는 셀프 프락시 서버를 사용한 키 관리 시스템을 제안하고, 사용자가 암호화된 데이터베이스에 질의할 때 데이터 소유자가 관련키에 직접적으로 관여하지 않는 셀프 생성 알고리즘을 생성하여 클라우드 서비스 성능을 개선한다. 셀프 프락시 서버는 클라우드 키 서버에 문제가 발생했을 때와 효율적인 클라우드 키 관리를 위하여, 이를 대신한 분산 서버로서 능동적이고 자율적인 키 관리를 지원한다. 따라서 제안한 키 관리 시스템은 클라우드 서버 데이터베이스의 기밀성 지원으로 안전한 클라우드 서비스를 제공한다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제12권7호
• /
• pp.3375-3400
• /
• 2018

With the advent of database-as-a-service (DAAS) and cloud computing, more and more data owners are motivated to outsource their data to cloud database in consideration of convenience and cost. However, it has become a challenging work to provide security to database as service model in cloud computing, because adversaries may try to gain access to sensitive data, and curious or malicious administrators may capture and leak data. In order to realize privacy preservation, sensitive data should be encrypted before outsourcing. In this paper, we present a secure and practical system over encrypted cloud data, called QSDB (queryable and secure database), which simultaneously supports SQL query operations. The proposed system can store and process the floating point numbers without compromising the security of data. To balance tradeoff between data privacy protection and query processing efficiency, QSDB utilizes three different encryption models to encrypt data. Our strategy is to process as much queries as possible at the cloud server. Encryption of queries and decryption of encrypted queries results are performed at client. Experiments on the real-world data sets were conducted to demonstrate the efficiency and practicality of the proposed system.

• 정보보호학회논문지
• /
• 제23권6호
• /
• pp.1259-1266
• /
• 2013

최근 데이터베이스의 크기가 점차 증가하고 있다. 기업에서는 데이터베이스 관리의 어려움으로 인하여 클라우드 형태로 아웃소싱하고 있으며, 이때 클라우드 서비스업체에 의해 관리되는 데이터베이스의 보안은 매우 중요하다. 데이터베이스 내의 중요 정보를 보호하기 위해서는 암호화하는 것이 최선의 방법이지만, 일단 암호화되고 난 후에는 더 이상 검색하기 어려워진다. 암호화된 데이터베이스에서의 검색 성능은 암호화 방법과 검색 방법에 의해 좌우된다. 본 논문에서는 가변길이의 키워드 인덱스와 블룸필터를 사용하여, 클라우드 서비스업체의 관리하의 데이터베이스에 대한 암호화 방법 및 효율적인 검색 방법을 제안한다. 마지막으로 제안된 방법이 데이터베이스 암호화 및 관련 응용분야에 유용하게 사용될 수 있음을 보인다.

• International Journal of Advanced Culture Technology
• /
• 제9권3호
• /
• pp.321-326
• /
• 2021

In a multi-cloud environment, it is necessary to minimize physical movement for efficient interoperability of distributed source data without building a data warehouse or data lake. And there is a need for a data platform that can easily access data anywhere in a multi-cloud environment. In this paper, we propose a new platform based on data fabric centered on a distributed platform suitable for cloud environments that overcomes the limitations of legacy systems. This platform applies the knowledge graph database technique to the physical linkage of source data for interoperability of distributed data. And by integrating all data into one scalable platform in a multi-cloud environment, it uses the holochain technique so that companies can easily access and move data with security and authority guaranteed regardless of where the data is stored. The knowledge graph database mitigates the problem of heterogeneous conflicts of data interoperability in a decentralized environment, and Holochain accelerates the memory and security processing process on traditional blockchains. In this way, data access and sharing of more distributed data interoperability becomes flexible, and metadata matching flexibility is effectively handled.

• 한국컴퓨터정보학회논문지
• /
• 제22권12호
• /
• pp.179-186
• /
• 2017

Managing students' data is a high prioritized duty of the university administration since most of the school affairs are proceed based on that database. Universities have invested in IT assets such as servers, storage, database, and networks. However, continuing investment in IT infrastructure is impossible due to limited budget and rapid changes in the educational environment. As cloud computing diffuse, universities are trying to reduce costs and improve efficiency by increasing server utilization, unlike when physically investing. We designed a hypothetical academic information management system based on cloud computing by utilizing the advanced server virtualization technology. This administrative cloud system allows universities to improve the availability of the system with low cost. The system demonstrates its flexibility of using data resources and immediacy of resumption.

• 한국정보통신학회:학술대회논문집
• /
• 한국정보통신학회 2017년도 추계학술대회
• /
• pp.744-747
• /
• 2017

The Internet of things (IoT) needs to be an event-driven approach for efficient real time response and processing. An IoT gateway is sometimes employed to provide the connection and translation between devices and the cloud. Storing data in the local database, and then forwarding it on the cloud is a task to be relegated to a gateway device In this paper, we propose the design of the IoT gateway with Fog computing for storing data from sensors into a local database. In the procedure of designing storing tasks, we propose to use the interfacing software known as Ardulink MQTT bridge. MQTT is a protocol for sensors to publish data to the clients. When it comes to needing historical data, MQTT connector can push MQTT data into SQL database. We write an MQTT client and based on the message topic insert the values into a SQL Database The design of IoT gateway with Fog computing adds value because it provides processing of the data across multiple devices before it sends to the cloud.

• Computers and Concrete
• /
• 제28권5호
• /
• pp.441-450
• /
• 2021

This study presents the first analysis system and fast-access cloud database for shrinkage and creep of concrete in the world, named "shrinkage and creep database in Taiwan", SCDT. SCDT not only has the most comprehensive experimental data, including NU, JSCE, Europe, and TW databases, but provides a design tool for researchers and engineers. It can further facilitate the development of prediction models for localized concrete. Users can obtain the shrinkage and creep curves based on their selected prediction models in SCDT. Comparisons of the predicted results of selected models and test results in the chosen database can be generated in seconds. One example of the development of basic creep prediction model in Taiwan based on model B4 by using SCDT to reflect concrete characteristics in Taiwan is also presented in this study. Users anywhere in the world can easily access SCDT to browse and upload data, receive predictive results, or develop predictive models.

• 디지털융복합연구
• /
• 제11권2호
• /
• pp.317-322
• /
• 2013

최근 다양한 환경을 통한 인터넷 접속으로 모바일 클라우드 환경이 대중화되고 있다. 컴퓨터의 성능 향상과 서비스 개발을 통해 그 수요가 날로 증가됨에 따라 그 피해도 급증하고 있다. 때문에 모바일 클라우드 서비스에서 발생하는 대량의 데이터베이스 관리에서 요구되는 보안 사항의 문제점에 관한 연구가 요구된다. 현재 다양한 방식으로 데이터베이스로의 접근을 제한하는 보안 솔루션이 적용되고 있으나 모바일 클라우드와 같이 새로운 사용자 환경에 대한 보안 정책의 분석이 필요하다. 본 논문은 모바일 클라우드 환경에서 데이터베이스 관리를 통한 안전한 데이터 접근에 관한 취약성을 분석해 보고 안전한 데이터 관리에 대한 보안 요구사항을 알아본다. 클라우드에서 제공되는 서비스 상에서 발생하는 보안 위협에 관한 요소를 분석하고 이를 통하여 보다 안전한 접근제어에 대한 보안 요구사항을 도출한다. 향후 접근제어에 대한 보안 요구사항에 대한 시스템 적용과 평가에 대한 연구가 요구된다.