SlideShare a Scribd company logo

Encryption-Based Multilevel Model for DBMS

Download as PPTX, PDF
A
Amna Magzoub

The document presents an encryption-based multilevel model for database management systems, focusing on the integration of encryption as an additional security layer. It discusses how this model improves response time for data retrieval while reducing database size, along with performance comparisons between various multilevel relational database security models. The study includes experimental results demonstrating the impact of encryption on database performance, illustrating improvements in select and join queries but drawbacks in update operations due to processing overhead.

Education
1 of 40
Downloaded 25 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
Chapter 5 Encryption-Based Multilevel Model For DBMS Presented by: Ala Eltayeb
Outlines Introduction Encryption-Based Multilevel Database Model Manipulation Performance Study Analysis of Experimental Results Summary
1. Introduction • Type of encryption in database? Column &row • Encrypt each tuple (row) in the relation (table) with an encryption key that depends on the security level of the tuple (tuple classification). Encryption-Based Multi-level Model Multilevel Relation Model Encryption System
The Encryption-based multilevel security model Characterizes: I.Utilizing an encryption system as an additional security layer over the multilevel security layer for the relational database. II. Reducing the multilevel database size. III. Improving the response time of data retrieval from the multilevel database.
Cont.. • The prototype is used as a research tool for studying principles and mechanisms of the encryption-based multilevel model and other multilevel relational database security models (SeaView, Jajodia–Sandhu, Smith– Winslett , multilevel relational [MLR], and belief- consistent models) .
Why used prototype? 1. To determine the relative performance of the multilevel relational database security models. 2. The performance cost for applying the encryption system in multilevel relational database security.
2. Encryption-Based Multilevel Database Model • A symmetric key:-for each unique security level. • The user can use the keys : Security level (key) <= Security level (user) • The classification attributes are removed. • Each attribute is encrypted by using: encryption key that corresponds to the tuple security classification level (tuple level encryption).
Example :Data store in MLR and encryption-based models
Several DBMS Support Encryption Algorithms 1. DB2(IBM) - SQL Functions - Stored Procedures 2. ORACLE - Transparent Data Encryption (TDE)
Encryption-Based Multilevel Model for DBMS
Manipulation • The data manipulation statements in the encryption-based multilevel database model are :  INSERT  DELETE  SELECT  UPDATE  UPLEVEL
The INSERT Statement I = attribute
The DELETE Statement DELETE FROM R WHERE P I = tuple
The SELECT Statement I = tuple
The UPDATE Statement I = tuple
The UPLEVEL Statement • The UPLEVEL statement executed by a user with security class level L has the following general form: UPLEVEL R GET [A1,A2,...,A n] FROM [C1,C2,...,C n] WHERE P
UPLEVEL Example user with S security level has used the UPLEVEL command to indicate that he believes the first tuple and insert the second tuple with S security level
Cont… UPLEVEL SOD GET OBJ FROM M1,DEST FROM M2 WHERE SHIP =“Enterprise”
4. Performance Study • Study performance of multilevel relational database security models such as SeaView, Jajodia–Sandhu, Smith– Winslett, MLR, and belief-consistent models and the encryption-based multilevel database. • The impact of changing the size and schema of the relational database on the performance of these models
Machine that is used for the implementation consists of : • CPU speed of 2.2 GHz • physical RAM size of 3 GB • hard disk size of 320 GB • The software used in the implementation is a Microsoft SQL server 2008 R2 and the experiments’ measurements were captured at the machine using a monitoring tool provided by the Microsoft SQL server.
The impact of changing the number of tuples on the performance of the encryption algorithms in a multilevel database in the selection query
Cont..  The experiments investigate the impact of changing : 1) The number of tuples 2) The number of attributes 3) The number of security levels  These experiments use the CPU response time (in minutes).  Assume that the base value for the number of tuples is 1,000,000, the base number of attributes is three, and the base number of security levels is four.
ER diagram for the timesheet system
SELECT Query Select * from Employee where department = ‘Sales’  Supporting encryption in the encryption-based multilevel database model improves the performance of the multilevel relational database because database size is decreased due to removing the extra attributes used for the class levels.
Impact of changing the number of tuples in the selection query Number of attributes = 3 Number of security levels = 4
Impact of changing the number of attributes in the selection query Number of tuples = million Number of security levels = 4
Impact of changing the number of security levels in the selection query Number of attributes = 3 Number of tuples = million
JOIN Query • Select * from Employee join Departure on Employee.Name = Departure.Name where Employee. department = ‘Sales’
Impact of changing the number of tuples in the join query Number of attributes = 3 Number of security levels = 4
Impact of changing the number of attributes in the join query Number of tuples = million Number of security levels = 4
Impact of varying the number of security levels in the join query Number of attributes = 3 Number of tuples = million
Cont…  Supporting encryption in the encryption-based multilevel database model improves the performance of the multilevel relational database because database size is decreased due to removing the extra attributes used for the class levels.
Impact of varying the number of tuples in an update query Number of attributes = 3 Number of security levels = 4
Cont..  Supporting encryption in the encryption-based multilevel database model decreases the performance of a multilevel database because, during the execution of the update statement.  The encryption and decryption mechanisms will be included together in the update procedure.
Hierarchical of Model Performance Smith-Winslett MLR Blief-Consistent Jajodia-Sandhu SeaView High performance
Analysis of Experimental Results • The performance of the Smith–Winslett model is the best. • The MLR model offers less performance than the Smith– Winslett model because it supports the security classification at the level of each single attribute. • The belief-consistent model has less performance than the MLR model because it supports a combination of the security classification levels for each single attribute to enable the user to assert his beliefs of lower level users’ information.
Cont… • The Jajodia–Sandhu model has bad performance because of the impact of union operation between single-level relations in the recovery algorithm. • The SeaView model has very bad performance because of the impact of the JOIN operation between vertical single-level relations and union operation between horizontal single-level relations in the recovery algorithm.
Comparison between MLR and Encryption –Based model  The encryption- based multilevel database model has performance better than the performance of the MLR model in retrieving data from the multilevel database.  The performance of the encryption-based multilevel database model is less than the performance of the MLR model in updating data because the overhead of supporting the encryption algorithm in the update query is executed.
Encryption-Based Multilevel Model for DBMS
Summary  The encryption-based multilevel model overview.  Comparison the performance of MLR models and encryption- based model.  Supporting encryption in multilevel relational database: 1. Improve performance of the retrieving data in the SELECT and JOIN queries. 2.Bad performance because of the extra CPU processing results.

More Related Content

PDF
A novel algorithm to protect and manage memory locations
iosrjce
 
PDF
Security optimization of dynamic networks with probabilistic graph modeling a...
Pvrtechnologies Nellore
 
DOCX
Cloud computing term paper
Hemanth
 
PPT
PPT FOR IDBSDDS SCHEMES
Sahithi Naraparaju
 
PPTX
Database security
Birju Tank
 
DOCX
Identity based proxy-oriented data uploading and remote data integrity checki...
Finalyearprojects Toall
 
DOCX
Cloud Storage and Security
Shashank Srivastava
 
PPTX
Identity Based Secure Distributed Storage Scheme
Venkatesh Devam ☁
 
A novel algorithm to protect and manage memory locations
iosrjce
 
Security optimization of dynamic networks with probabilistic graph modeling a...
Pvrtechnologies Nellore
 
Cloud computing term paper
Hemanth
 
PPT FOR IDBSDDS SCHEMES
Sahithi Naraparaju
 
Database security
Birju Tank
 
Identity based proxy-oriented data uploading and remote data integrity checki...
Finalyearprojects Toall
 
Cloud Storage and Security
Shashank Srivastava
 
Identity Based Secure Distributed Storage Scheme
Venkatesh Devam ☁
 

Viewers also liked (16)

PPTX
Scalable and secure sharing of public health record using attribute based Enc...
shreyank byadagi
 
PPTX
Final review presentation
Rahid Abdul Kalam
 
DOCX
CLOUD CPOMPUTING SECURITY
Shivananda Rai
 
PPTX
Database Security
ShingalaKrupa
 
PPTX
Database security
Arpana shree
 
PPTX
Database security
Software Engineering
 
PPT
Ppt 1
shanmugamsara
 
PPS
Database Design Slide 1
ahfiki
 
PPTX
How to Draw an Effective ER diagram
Tech_MX
 
PPT
Network Security
MAJU
 
PDF
Network Security Presentation
Allan Pratt MBA
 
PPT
Network security
Gichelle Amon
 
PPTX
Relational cloud, A Database-as-a-Service for the Cloud
Hossein Riasati
 
PPT
Database Security
alraee
 
PPTX
Cloud computing (IT-703) UNIT 1 & 2
Jitendra s Rathore
 
PPT
Network Security Threats and Solutions
Colin058
 
Scalable and secure sharing of public health record using attribute based Enc...
shreyank byadagi
 
Final review presentation
Rahid Abdul Kalam
 
CLOUD CPOMPUTING SECURITY
Shivananda Rai
 
Database Security
ShingalaKrupa
 
Database security
Arpana shree
 
Database security
Software Engineering
 
Ppt 1
shanmugamsara
 
Database Design Slide 1
ahfiki
 
How to Draw an Effective ER diagram
Tech_MX
 
Network Security
MAJU
 
Network Security Presentation
Allan Pratt MBA
 
Network security
Gichelle Amon
 
Relational cloud, A Database-as-a-Service for the Cloud
Hossein Riasati
 
Database Security
alraee
 
Cloud computing (IT-703) UNIT 1 & 2
Jitendra s Rathore
 
Network Security Threats and Solutions
Colin058
 
Ad

Similar to Encryption-Based Multilevel Model for DBMS (20)

PDF
Block-Level Message-Locked Encryption for Secure Large File De-duplication
IRJET Journal
 
PDF
IRJET- Secure Data Deduplication and Auditing for Cloud Data Storage
IRJET Journal
 
PPTX
Privacy preserving multi-keyword ranked search over encrypted cloud data
IGEEKS TECHNOLOGIES
 
PDF
Secure Access to Outsourced Databases
IOSR Journals
 
PDF
Q01725110114
IOSR Journals
 
PDF
Enhancing Cloud Computing Security for Data Sharing Within Group Members
iosrjce
 
PPTX
dbms ppt .pptx
SagarGhosh48
 
PPTX
IncQuery-D: Incremental Queries in the Cloud
Gábor Szárnyas
 
PDF
Multi-Keyword Ranked Search in Encrypted Cloud Storage
IRJET Journal
 
PPT
File transfer with multiple security mechanism
Shubham Patil
 
PDF
Detecting Password brute force attack and Protecting the cloud data with AES ...
IRJET Journal
 
PDF
oracle
tarunamoria
 
PDF
IRJET-2 Proxy-Oriented Data Uploading in Multi Cloud Storage
IRJET Journal
 
PDF
KoprowskiT_SQLSatHolland_SQLServerSecurityInTheCloud
Tobias Koprowski
 
DOC
Privacy preserving multi-keyword ranked search over encrypted cloud data
Shakas Technologies
 
PPTX
A NETWORK CODING AND DES BASED DYNAMIC ENCRYPTION SCHEME FOR MOVING TARGET DE...
Akhil Kumar Pappula
 
PPTX
Struts validation framework Part 2
n|u - The Open Security Community
 
PDF
IRJET- Data Security in Cloud Computing through AES under Drivehq
IRJET Journal
 
PDF
Protecting microservices using secure design patterns 1.0
Trupti Shiralkar, CISSP
 
PDF
Trust Based Management with User Feedback Service in Cloud Environment
IRJET Journal
 
Block-Level Message-Locked Encryption for Secure Large File De-duplication
IRJET Journal
 
IRJET- Secure Data Deduplication and Auditing for Cloud Data Storage
IRJET Journal
 
Privacy preserving multi-keyword ranked search over encrypted cloud data
IGEEKS TECHNOLOGIES
 
Secure Access to Outsourced Databases
IOSR Journals
 
Q01725110114
IOSR Journals
 
Enhancing Cloud Computing Security for Data Sharing Within Group Members
iosrjce
 
dbms ppt .pptx
SagarGhosh48
 
IncQuery-D: Incremental Queries in the Cloud
Gábor Szárnyas
 
Multi-Keyword Ranked Search in Encrypted Cloud Storage
IRJET Journal
 
File transfer with multiple security mechanism
Shubham Patil
 
Detecting Password brute force attack and Protecting the cloud data with AES ...
IRJET Journal
 
oracle
tarunamoria
 
IRJET-2 Proxy-Oriented Data Uploading in Multi Cloud Storage
IRJET Journal
 
KoprowskiT_SQLSatHolland_SQLServerSecurityInTheCloud
Tobias Koprowski
 
Privacy preserving multi-keyword ranked search over encrypted cloud data
Shakas Technologies
 
A NETWORK CODING AND DES BASED DYNAMIC ENCRYPTION SCHEME FOR MOVING TARGET DE...
Akhil Kumar Pappula
 
Struts validation framework Part 2
n|u - The Open Security Community
 
IRJET- Data Security in Cloud Computing through AES under Drivehq
IRJET Journal
 
Protecting microservices using secure design patterns 1.0
Trupti Shiralkar, CISSP
 
Trust Based Management with User Feedback Service in Cloud Environment
IRJET Journal
 
Ad

Recently uploaded (20)

PPTX
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
PDF
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
PDF
Chinmaya Tiranga quiz Grand Finale.pdf
Nitin Suresh
 
PPTX
Orientation - ARALprogram of Deped to the Parents.pptx
JeromeTamayoSantiago1
 
PDF
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
PPTX
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
PPTX
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
PDF
Yogi Goddess Pres Conference Studio Updates
LDMMia Reiki Lectures
 
PPTX
202450812 BayCHI UCSC-SV 20250812 v17.pptx
home
 
PDF
Trump Administration's workforce development strategy
Mebane Rash
 
PDF
RTP_AR_KS1_Tutor's Guide_English [FOR REPRODUCTION].pdf
RobertMentino1
 
PPTX
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
PPTX
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
PDF
Computing-Curriculum for Schools in Ghana
abigailanane203
 
PDF
Complications of Minimal Access Surgery at WLH
mohitsuren827
 
PPTX
Lesson notes of climatology university.
sgladness67
 
PDF
Classroom Observation Tools for Teachers
Nicaramirez
 
PDF
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
PPTX
IMMUNITY IMMUNITY refers to protection against infection, and the immune syst...
shilpa939953
 
PDF
OBE - B.A.(HON'S) IN INTERIOR ARCHITECTURE -Ar.MOHIUDDIN.pdf
ArchitectAFMMohiuddi
 
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
Chinmaya Tiranga quiz Grand Finale.pdf
Nitin Suresh
 
Orientation - ARALprogram of Deped to the Parents.pptx
JeromeTamayoSantiago1
 
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
Yogi Goddess Pres Conference Studio Updates
LDMMia Reiki Lectures
 
202450812 BayCHI UCSC-SV 20250812 v17.pptx
home
 
Trump Administration's workforce development strategy
Mebane Rash
 
RTP_AR_KS1_Tutor's Guide_English [FOR REPRODUCTION].pdf
RobertMentino1
 
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
school management -TNTEU- B.Ed., Semester II Unit 1.pptx
NihumathunnisaH
 
Computing-Curriculum for Schools in Ghana
abigailanane203
 
Complications of Minimal Access Surgery at WLH
mohitsuren827
 
Lesson notes of climatology university.
sgladness67
 
Classroom Observation Tools for Teachers
Nicaramirez
 
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
IMMUNITY IMMUNITY refers to protection against infection, and the immune syst...
shilpa939953
 
OBE - B.A.(HON'S) IN INTERIOR ARCHITECTURE -Ar.MOHIUDDIN.pdf
ArchitectAFMMohiuddi
 

Encryption-Based Multilevel Model for DBMS

  • 1. Chapter 5 Encryption-Based Multilevel Model For DBMS Presented by: Ala Eltayeb
  • 2. Outlines Introduction Encryption-Based Multilevel Database Model Manipulation Performance Study Analysis of Experimental Results Summary
  • 3. 1. Introduction • Type of encryption in database? Column &row • Encrypt each tuple (row) in the relation (table) with an encryption key that depends on the security level of the tuple (tuple classification). Encryption-Based Multi-level Model Multilevel Relation Model Encryption System
  • 4. The Encryption-based multilevel security model Characterizes: I.Utilizing an encryption system as an additional security layer over the multilevel security layer for the relational database. II. Reducing the multilevel database size. III. Improving the response time of data retrieval from the multilevel database.
  • 5. Cont.. • The prototype is used as a research tool for studying principles and mechanisms of the encryption-based multilevel model and other multilevel relational database security models (SeaView, Jajodia–Sandhu, Smith– Winslett , multilevel relational [MLR], and belief- consistent models) .
  • 6. Why used prototype? 1. To determine the relative performance of the multilevel relational database security models. 2. The performance cost for applying the encryption system in multilevel relational database security.
  • 7. 2. Encryption-Based Multilevel Database Model • A symmetric key:-for each unique security level. • The user can use the keys : Security level (key) <= Security level (user) • The classification attributes are removed. • Each attribute is encrypted by using: encryption key that corresponds to the tuple security classification level (tuple level encryption).
  • 8. Example :Data store in MLR and encryption-based models
  • 9. Several DBMS Support Encryption Algorithms 1. DB2(IBM) - SQL Functions - Stored Procedures 2. ORACLE - Transparent Data Encryption (TDE)
  • 11. Manipulation • The data manipulation statements in the encryption-based multilevel database model are :  INSERT  DELETE  SELECT  UPDATE  UPLEVEL
  • 13. The DELETE Statement DELETE FROM R WHERE P I = tuple
  • 16. The UPLEVEL Statement • The UPLEVEL statement executed by a user with security class level L has the following general form: UPLEVEL R GET [A1,A2,...,A n] FROM [C1,C2,...,C n] WHERE P
  • 17. UPLEVEL Example user with S security level has used the UPLEVEL command to indicate that he believes the first tuple and insert the second tuple with S security level
  • 18. Cont… UPLEVEL SOD GET OBJ FROM M1,DEST FROM M2 WHERE SHIP =“Enterprise”
  • 19. 4. Performance Study • Study performance of multilevel relational database security models such as SeaView, Jajodia–Sandhu, Smith– Winslett, MLR, and belief-consistent models and the encryption-based multilevel database. • The impact of changing the size and schema of the relational database on the performance of these models
  • 20. Machine that is used for the implementation consists of : • CPU speed of 2.2 GHz • physical RAM size of 3 GB • hard disk size of 320 GB • The software used in the implementation is a Microsoft SQL server 2008 R2 and the experiments’ measurements were captured at the machine using a monitoring tool provided by the Microsoft SQL server.
  • 21. The impact of changing the number of tuples on the performance of the encryption algorithms in a multilevel database in the selection query
  • 22. Cont..  The experiments investigate the impact of changing : 1) The number of tuples 2) The number of attributes 3) The number of security levels  These experiments use the CPU response time (in minutes).  Assume that the base value for the number of tuples is 1,000,000, the base number of attributes is three, and the base number of security levels is four.
  • 23. ER diagram for the timesheet system
  • 24. SELECT Query Select * from Employee where department = ‘Sales’  Supporting encryption in the encryption-based multilevel database model improves the performance of the multilevel relational database because database size is decreased due to removing the extra attributes used for the class levels.
  • 25. Impact of changing the number of tuples in the selection query Number of attributes = 3 Number of security levels = 4
  • 26. Impact of changing the number of attributes in the selection query Number of tuples = million Number of security levels = 4
  • 27. Impact of changing the number of security levels in the selection query Number of attributes = 3 Number of tuples = million
  • 28. JOIN Query • Select * from Employee join Departure on Employee.Name = Departure.Name where Employee. department = ‘Sales’
  • 29. Impact of changing the number of tuples in the join query Number of attributes = 3 Number of security levels = 4
  • 30. Impact of changing the number of attributes in the join query Number of tuples = million Number of security levels = 4
  • 31. Impact of varying the number of security levels in the join query Number of attributes = 3 Number of tuples = million
  • 32. Cont…  Supporting encryption in the encryption-based multilevel database model improves the performance of the multilevel relational database because database size is decreased due to removing the extra attributes used for the class levels.
  • 33. Impact of varying the number of tuples in an update query Number of attributes = 3 Number of security levels = 4
  • 34. Cont..  Supporting encryption in the encryption-based multilevel database model decreases the performance of a multilevel database because, during the execution of the update statement.  The encryption and decryption mechanisms will be included together in the update procedure.
  • 35. Hierarchical of Model Performance Smith-Winslett MLR Blief-Consistent Jajodia-Sandhu SeaView High performance
  • 36. Analysis of Experimental Results • The performance of the Smith–Winslett model is the best. • The MLR model offers less performance than the Smith– Winslett model because it supports the security classification at the level of each single attribute. • The belief-consistent model has less performance than the MLR model because it supports a combination of the security classification levels for each single attribute to enable the user to assert his beliefs of lower level users’ information.
  • 37. Cont… • The Jajodia–Sandhu model has bad performance because of the impact of union operation between single-level relations in the recovery algorithm. • The SeaView model has very bad performance because of the impact of the JOIN operation between vertical single-level relations and union operation between horizontal single-level relations in the recovery algorithm.
  • 38. Comparison between MLR and Encryption –Based model  The encryption- based multilevel database model has performance better than the performance of the MLR model in retrieving data from the multilevel database.  The performance of the encryption-based multilevel database model is less than the performance of the MLR model in updating data because the overhead of supporting the encryption algorithm in the update query is executed.
  • 40. Summary  The encryption-based multilevel model overview.  Comparison the performance of MLR models and encryption- based model.  Supporting encryption in multilevel relational database: 1. Improve performance of the retrieving data in the SELECT and JOIN queries. 2.Bad performance because of the extra CPU processing results.