DATABASE SECURITY MECHANISM USING KEY PROFILE BASED ON PUBLIC KEY INFRASTRUCTURE MECHANISM

摘要

The present invention provides methods for the management of your encryption keys and the encryption key to encrypt the DB and important files relates to a mechanism to enhance the access control. ; The problem with existing security solutions cancer DB data / generate an encryption key for decryption, and the Application Manager, or the encryption key in the program source injected into the level of encryption keys are vulnerable to exposure by management. ; The proposed technique is personalized, role-based, have the encryption key that is assigned to each group and individual-specific profile form, such as a user's PKI certificate a trusted public key information for decoding the encryption key that only the user key profile form of a list using the extracted encryption key to the personal information or important information, a mechanism to allow the access. ; The key profile technique can be applied to individual encryption key for the storage and management of information will increase the more secure the encryption key from the encryption key managerial strength or password enforcement techniques side by side so that the user can direct. ; The present invention, as well as by multiple users can share the encryption key, application-specific, group-specific passwords are assigned the key to the various forms by the management based on the user side of the profile DB or required for encryption The technique can be used efficiently for file security.