DATABASE AND NETWORK SECURITY USING CRYPTOGRAPHY

Abstract

An optimal Distributed access control scheme based on cryptography, which provides database and network security in an organization is proposed. Basic intention is to present a distributed approach to assigning cryptographic keys which enables a member of the organization to derive, from his own key, the keys of members below him in the hierarchy, and consequently to have access to information enciphered under those keys. All the data is stored in encrypted form , not in plain text form providing database security. As data transmitted or the network is encrypted form, this provides network security.We can take measures such that active intruder can not misguide us. To show the validity of the scheme, we develop a package which simulates the distriduted organization environment and provided facilities required, such as create a file, read a file etc. As whenever security considerations are violated this package will notify the fact and does not allow the service requested. If we try to access data stored through the package from outside we won't get any information as we can get only enciphered version of the information . Most of the UNIX provided functions are used directly for different purposes. We can easily apply the scheme in the real distributed organizational environment. The presented scheme is optimal distributed solution to the access control problem in a hierarchy.