The Design and Implementation of a Sensitive Information System

2009 Fourth International Conference on Computer Sciences and Convergence Information Technology Pub Date : 2009-11-24 DOI:10.1109/ICCIT.2009.154

Xiaoli Wang, Xianping Wu, Yiling Wang, P. D. Le

{"title":"The Design and Implementation of a Sensitive Information System","authors":"Xiaoli Wang, Xianping Wu, Yiling Wang, P. D. Le","doi":"10.1109/ICCIT.2009.154","DOIUrl":null,"url":null,"abstract":"Protecting sensitive information systems from security threats such as unauthorized access, information eavesdropping and information interfering, is significant. Most of the natural approaches employ strong authentication or cryptography systems to protect critical data. But those approaches do not stress on the potential amount of risks associated with sensitive information, especially the vulnerability from compromising of long term cryptographic keys and the lack of fine-grained access control for group sharing. Therefore, in this paper, we use dynamic key and group key theories to propose a new security architecture for sensitive information protection. The architecture categorizes sensitive information based on classified information. We implement the architecture by adopting elliptic curve cryptography (ECC) and dynamic key approaches to generate symmetric key to secure unicast and multicast communication among users. A formal analysis is provided to verify the security of the proposed work. It shows that the proposed system guarantees critical information data security and access control flexibility.","PeriodicalId":112416,"journal":{"name":"2009 Fourth International Conference on Computer Sciences and Convergence Information Technology","volume":"19 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-11-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 Fourth International Conference on Computer Sciences and Convergence Information Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCIT.2009.154","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Protecting sensitive information systems from security threats such as unauthorized access, information eavesdropping and information interfering, is significant. Most of the natural approaches employ strong authentication or cryptography systems to protect critical data. But those approaches do not stress on the potential amount of risks associated with sensitive information, especially the vulnerability from compromising of long term cryptographic keys and the lack of fine-grained access control for group sharing. Therefore, in this paper, we use dynamic key and group key theories to propose a new security architecture for sensitive information protection. The architecture categorizes sensitive information based on classified information. We implement the architecture by adopting elliptic curve cryptography (ECC) and dynamic key approaches to generate symmetric key to secure unicast and multicast communication among users. A formal analysis is provided to verify the security of the proposed work. It shows that the proposed system guarantees critical information data security and access control flexibility.

查看原文本刊更多论文

敏感信息系统的设计与实现

保护敏感信息系统免受未经授权的访问、信息窃听和信息干扰等安全威胁是非常重要的。大多数自然方法采用强身份验证或加密系统来保护关键数据。但这些方法并没有强调与敏感信息相关的潜在风险，尤其是长期加密密钥泄露的脆弱性，以及缺乏对组共享的细粒度访问控制。因此，本文运用动态密钥和组密钥理论，提出了一种新的敏感信息安全体系结构。该架构基于分类信息对敏感信息进行分类。我们采用椭圆曲线加密(ECC)和动态密钥方法来生成对称密钥，以保证用户间单播和组播通信的安全。提供正式分析以验证所建议工作的安全性。结果表明，该系统保证了关键信息数据的安全性和访问控制的灵活性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2009 Fourth International Conference on Computer Sciences and Convergence Information Technology

自引率

0.00%

发文量