TY - GEN
T1 - Achieving database information accountability in the cloud
AU - Pavlou, Kyriacos E.
AU - Snodgrass, Richard T.
PY - 2012
Y1 - 2012
N2 - Regulations and societal expectations have recently emphasized the need to mediate access to valuable databases. Fraud occurs when a person (mostly an insider) tampers illegally with a database. Data owners would like to be assured that such tampering has not occurred, or if it does, that it will be quickly discovered. The problem is exacerbated with data stored in cloud databases such as Amazon's Relational Database Service (RDS) or Microsoft's SQL Azure Database. In our previous work we have shown that information accountability across the enterprise is a viable alternative to information restriction for ensuring the correct storage, use, and maintenance of databases on extant DBMSes. We have developed a prototype audit system (DRAGOON) that employs cryptographic hashing techniques to support accountability in high-performance databases. Cloud databases present a new set of problems that make extending DRAGOON challenging. In this paper we discuss these problems and show how the DRAGOON architecture can be refined to provide a more practical and feasible information accountability solution for data stored in the cloud.
AB - Regulations and societal expectations have recently emphasized the need to mediate access to valuable databases. Fraud occurs when a person (mostly an insider) tampers illegally with a database. Data owners would like to be assured that such tampering has not occurred, or if it does, that it will be quickly discovered. The problem is exacerbated with data stored in cloud databases such as Amazon's Relational Database Service (RDS) or Microsoft's SQL Azure Database. In our previous work we have shown that information accountability across the enterprise is a viable alternative to information restriction for ensuring the correct storage, use, and maintenance of databases on extant DBMSes. We have developed a prototype audit system (DRAGOON) that employs cryptographic hashing techniques to support accountability in high-performance databases. Cloud databases present a new set of problems that make extending DRAGOON challenging. In this paper we discuss these problems and show how the DRAGOON architecture can be refined to provide a more practical and feasible information accountability solution for data stored in the cloud.
UR - http://www.scopus.com/inward/record.url?scp=84869018924&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84869018924&partnerID=8YFLogxK
U2 - 10.1109/ICDEW.2012.37
DO - 10.1109/ICDEW.2012.37
M3 - Conference contribution
AN - SCOPUS:84869018924
SN - 9780769547480
T3 - Proceedings - 2012 IEEE 28th International Conference on Data Engineering Workshops, ICDEW 2012
SP - 147
EP - 150
BT - Proceedings - 2012 IEEE 28th International Conference on Data Engineering Workshops, ICDEW 2012
T2 - 2012 IEEE 28th International Conference on Data Engineering Workshops, ICDEW 2012
Y2 - 1 April 2012 through 5 April 2012
ER -