• Journal of Information Processing Systems
• /
• v.14 no.5
• /
• pp.1087-1101
• /
• 2018

As cloud computing has become a widespread technology, malicious attackers can obtain the private information of users that has leaked from the service provider in the outsourced databases. To resolve the problem, it is necessary to encrypt the database prior to outsourcing it to the service provider. However, the most existing data encryption schemes cannot process a query without decrypting the encrypted databases. Moreover, because the amount of the data is large, it takes too much time to decrypt all the data. For this, Programmable Order-Preserving Secure Index Scheme (POPIS) was proposed to hide the original data while performing query processing without decryption. However, POPIS is weak to both order matching attacks and data count attacks. To overcome the limitations, we propose a group order-preserving data encryption scheme (GOPES) that can support efficient query processing over the encrypted data. Since GOPES can preserve the order of each data group by generating the signatures of the encrypted data, it can provide a high degree of data privacy protection. Finally, it is shown that GOPES is better than the existing POPIS, with respect to both order matching attacks and data count attacks.

• Journal of KIISE:Databases
• /
• v.34 no.1
• /
• pp.1-17
• /
• 2007

As XML is becoming a de facto standard for distribution and sharing of information, the need for an efficient yet secure access of XML data has become very important. To enforce the fine-level granularity requirement, authorization models for regulating access to XML documents use XPath which is a standard for specifying parts of XML data and a suitable language for both query processing. An access control environment for XML documents and some techniques to deal with authorization priorities and conflict resolution issues are proposed. Despite this, relatively little work has been done to enforce access controls particularly for XML databases in the case of query access. Developing an efficient mechanism for XML databases to control query-based access is therefore the central theme of this paper. This work is a proposal for an efficient yet secure XML access control system. The basic idea utilized is that a user query interaction with only necessary access control rules is modified to an alternative form which is guaranteed to have no access violations using tree-aware metadata of XML schemes and set operators supported by XPath 2.0. The scheme can be applied to any XML database management system and has several advantages over other suggested schemes. These include implementation easiness, small execution time overhead, fine-grained controls, and safe and correct query modification. The experimental results clearly demonstrate the efficiency of the approach.

• Journal of the Korean Society for Library and Information Science
• /
• v.34 no.3
• /
• pp.61-76
• /
• 2000

A study on the remote library users showed that remote users preferred online databases and internet as information resources because of easy access and easy of use. However, they have used books and journals, which are printed resources, as main information resources because online databases and internet cannot satisfy their information needs. Also, 86.7 percent of remote users consider library services as an important issue to choose a distance learning program, and remote users extremely motivated by their professors to use library so that there are needs to have partnership between distance learning programs and library services. Finally, remote users consider authority and accuracy and contents of obtained information as important issues for their information rather than design of the databases, so that library should secure more digitalized information for remote users needs. This study is to contribute to improve quality of information services for remote users, however, it is not thoroughgoing enough, and there should be successive researches in the future.

• Journal of Pharmacopuncture
• /
• v.25 no.2
• /
• pp.79-87
• /
• 2022

Since ancient times, plants have been a major source of novel drug molecules and have been used in the treatment of different infectious diseases. Secondary plant metabolites have miraculous healing properties and show potent therapeutic responses when used in combination drug therapy. The prime objective of this review is to summarize the concept of drug combination with special emphasis on the synergistic interactions between plant-derived bioactive phytochemicals with commercially available antimicrobial agents. The study also assesses the roles, importance, and applicability of phytochemicals in the management of different diseases. The review focuses on different aspects of combined antimicrobial activities, the possible mechanisms involved, and the current status of research in the field. The study was conducted based on an extensive literature survey that resulted in the following hypothesis: secondary metabolites derived from plants possess remarkable therapeutic activities. The study was designed as a systematic review that ensures unbiased and accurate representations of the relevant data and information. Jadad scale selection criteria were used for qualitative analysis of the articles to assess them based on the relevant secure score (minimum and maximum scores range between 1 and 5, respectively). Articles with secure scores > 3 were considered for the study. A comprehensive literature survey was conducted using resource databases including PubMed, Google Scholar, Bielefeld Academic Search Engine, Research Gate, Scopus, Medline, and Science Direct up to June 2019. This article contains concise information about the most commonly used bioactive phytochemicals with potent antifungal and antibacterial effects.

• International Journal of Computer Science & Network Security
• /
• v.24 no.1
• /
• pp.140-150
• /
• 2024

Database-as-a-Service is one of the prime services provided by Cloud Computing. It provides data storage and management services to individuals, enterprises and organizations on pay and uses basis. In which any enterprise or organization can outsource its databases to the Cloud Service Provider (CSP) and query the data whenever and wherever required through any devices connected to the internet. The advantage of this service is that enterprises or organizations can reduce the cost of establishing and maintaining infrastructure locally. However, there exist some database security, privacychallenges and query performance issues to access data, to overcome these issues, in our recent research, developed a database security model using a deterministic encryption scheme, which improved query execution performance and database security level.As this model is implemented using a deterministic encryption scheme, it may suffer from chosen plain text attack, to overcome this issue. In this paper, we proposed a new model for cloud database security using nondeterministic encryption, order preserving encryption, homomorphic encryptionand database distribution schemes, andour proposed model supports execution of queries with equality check, range condition and aggregate operations on encrypted cloud database without decryption. This model is more secure with optimal query execution performance.

• Korean Institute of Interior Design Journal
• /
• v.15 no.5 s.58
• /
• pp.202-208
• /
• 2006

The purpose of this study is to suggest architectural planning guideline for the improvement of the evacuation environment in a ward. To suggest of guideline, the problem of irrational domestic criteria is searched according to compare National fire code (NFPA101, Life safety code) with Korea building law. This study includes stairs, corridors and exit door etc. but excludes fire facilities. To verify effectiveness of suggested guideline, egress simulation is run that based on databases according to literature survey. The results of this study could be summarized as follow: Suggested guidelines are subdivision(fire partition), evacuation by elevator, secure useful waiting space of elevator hall and smokeproof enclosures, the corridor is divided by fire or smoke barriers corridor from hazardous room, only wheeled items are arranged in corridors of a ward story. The result of computer simulation for suggested guidelines verify that egress time can be decreased 20% or above.

• Proceedings of the Korean Information Science Society Conference
• /
• 1998.10b
• /
• pp.211-213
• /
• 1998

실시간 응용을 위한 데이터베이스 시스템은 시간 제약 조건을 만족시켜야 하며, 데이터 일관성을 유지해야 한다. 또한 다중레벨을 지원하는 보안 프로토콜은 cover channel의 생성을 방지하는 것이 중요하다. Son과 Mukkamala는 primary copy와 secondary copy를 사용한 SRT-2PL을 개발하였다. 이 프로토콜은 보안 레벨간의 불간섭(non-interference)을 지원하며, covert channel의 발생을 막을 수 있으며, 지연이 적고 취소가 적으므로 실시간 데이터베이스 시스템에서 보안을 유지하는데 사용될 수 있다. 그러나 secondary copy를 모든 데이터 오브젝트에 대해 항상 보존해야 하므로 작업공간의 낭비가 있고, 데이터의 갱신을 위해 update queue를 관리해야 하는 오버헤드와 그에 따른 예측성 결여가 문제점으로 나타난다. 따라서, 본 논문에서는 불간섭을 지원하여 covert channel의 발생을 방지하면서, 복사본의 유지 기간을 줄여 실시간 지원을 강화시키고, 예측성을 좀더 높인 개선된 SRT-2PL 실시간 데이터베이스 보안 프로토콜을 제안한다. 본 논문에서 제안하는 동적 복사 알고리즘은 트랜잭션의 동작에 따라 동적으로 복사본을 생성하여 레벨간의 불간섭을 제공함과 동시에, 복사본의 유지 기간을 줄여 작업공간의 낭비를 줄이고 예측성을 높일 수 있다.

• Journal of the Korea Society of Computer and Information
• /
• v.11 no.5 s.43
• /
• pp.127-137
• /
• 2006

We propose two phase filtering scheme to develop an efficient mechanism for XML databases to control query-based access. An access control environment for XML documents and some techniques to deal with fine-grained authorization priorities and conflict resolution issues are proposed. Despite this, relatively little work has been done to enforce access controls particularly for XML databases in the case of query-based access. The basic idea utilized is that a user query interaction with only necessary access control rules is modified to an alternative form through a query optimization technique, which is guaranteed to have no access violations using tree-aware metadata of XML schemas. The scheme can be applied to any XML database management system and has several advantages such as small execution time overhead, fine-grained controls, and safe and correct query modification. The experimental results clearly demonstrate the efficiency of the approach.

• The KIPS Transactions:PartC
• /
• v.13C no.1 s.104
• /
• pp.19-26
• /
• 2006

Recently, web server hacking is trending toward web application hacking which uses comparatively vulnerable web applications based on open sources. And, it is possible to hack databases using web interfaces because web servers are usually connected databases. Web application attacks use vulnerabilities not in web server itself, but in web application structure, logical error and code error. It is difficult to defend web applications from various attacks by only using pattern matching detection method and code modification. In this paper, we propose a method to secure the web applications based on profiling which can detect and filter out abnormal web application requests.

• Journal of KIISE:Databases
• /
• v.30 no.6
• /
• pp.585-592
• /
• 2003

In the spatial database systems, it is necessary to manage spatial objects that have two or more aspatial information with different security levels on the same layer. If we adapt the polyinstantiation concept of relational database system for these spatial objects, it is difficult to process the representation problem of spatial objects and to solve the security problem that is service denial and information flow by access of subject that has a different security level. To address these problems, we propose a polyinstantiation method for security management of spatial objects in this paper. The proposed method manages secure spatial database system efficiently by creating spatial objects according to user's security level through security-level-conversion-step and polyinstantiation-generation-step with multi-level security policy. Also, in case of user who has a different security level requires secure operations, we create polyinstance for spatial object to solve problems of service denial and information flow.