Exploring the Efficacy of Dynamic Approaches in Database Encryption and Translational Security

Exploring the Efficacy of Dynamic Approaches in Database Encryption and Translational Security

연구 분야: Databases

학회: 2024 IEEE 24th International Conference on Software Quality, Reliability, and Security Companion (QRS-C)

In current information security management, many security protection standards based on network security have been established. Based on communication security, we will develop secure channels and data transmission rules to reduce the possibility of disclosure in data collection. This method is sufficient to meet the needs of all parties regarding the security maintenance services required for communication security. However, due to the software system development week, there are concerns about information security due to possible code vulnerabilities that may arise during software development. This study is based on the encryption design for secure maintenance and operation of the database and uses an intermediary system to encrypt data fields. In the study, a single encryption key design is designed for each data field, and an agent call for the data form encrypts each column. From different key data encryption operation ensures that the data has independent encryption operation procedures, which reduces the possibility of leaking a large amount of plaintext data when the database is attacked. In this study, an intermediate conversion encryption engine is constructed to automatically generate a set of independent security keys before each row of data is written to the database. At the same time, before each piece of data is written into the database, there is an independent key for the field information that lets encryption and decryption be performed. In our experiment result, we found that since each piece of data is encrypted by its independent writing method, it can be used to improve and solve the problem of data leakage caused by SQL injection into the database by SQL query, and at the same time, more strengthened the security technical difficulties of traditional data masking.