A Web Database Security Model Using the Host Identity Protocol

Web database security is a very important issue in e-commerce. This paper presents a new Web database security model. It utilizes the host identity protocol (HIP), which is being defined by the IETF, and a proposed user identity exchange, to achieve authentication of host identity and user identity, and combines it with the database system itself and encryption to guarantee Web database security and confidentiality of the data. For these purposes, we define a new concept of the user identity namespace for the user, and using it to realize the binding-authentication of the host identity and user identity of the client, and build a relationship between the host and the user. In the new model, we set up a high strength shell of security for the database.