A COLUMN-LEVEL ACCESS CONTROL MECHANISM FOR DATABASE OUTSOURCING SERVICE
Database outsourcing is emerging today as a successful paradigm allowing data owners toship their data to the external service provider for the distribution of resources. An importantproblem to be addressed in this paradigm concerns the protection of outsourced data fromunauthorized access even from the service provider’s server, which is not fully trusted. Severalencryption schemes and access control mechanisms have been suggested to protect theoutsourced data from unauthorized disclosure. However, by implementing these approaches,data owners are not capable of controlling and protecting the disclosure of the individualsensitive attributes of their data. Therefore, we propose a new column-level access controlmechanism that is based on subkeys, which would allow a data owner to further control theaccess to his data at the column-level. We also propose a new mechanism to efficiently reduce
the number of keys maintained by a data owner in cases when the users have different access privileges to different columns of the data being shared.
Keywords: Access control, column-level access control, database encryption.
Authors who publish with Vietnam Journal of Science and Technology agree with the following terms:
- The manuscript is not under consideration for publication elsewhere. When a manuscript is accepted for publication, the author agrees to automatic transfer of the copyright to the editorial office.
- The manuscript should not be published elsewhere in any language without the consent of the copyright holders. Authors have the right to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal’s published version of their work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
- Authors are encouraged to post their work online (e.g., in institutional repositories or on their websites) prior to or during the submission process, as it can lead to productive exchanges or/and greater number of citation to the to-be-published work (See The Effect of Open Access).