earticle

영어

In this paper, we designed a document security checkpoint for inspecting leakage of sensitive documents including military information from the internal to the outside network. Our designed model checks all documents when they are downloaded, sent, and printed. The model consists of four modules: authentication module, access control module, misuse monitor module, and tracking module. The authentication module checks the insider’s information and after which allows an insider to log on to the system. The access control module authorizes an insider to do operations (read, write) according to his role and security level. The pattern monitor module watches an insider’s abnormal access on documents as comparing the insider’s actual process to current process profile in database. The tracking module traces documents sent outside and verifies fabrication of documents. The document security checkpoint prevents indiscriminate access to documents and it does not allow access to documents unrelated to the insider’s duty and security level. Even though the document is illegally leaked by an insider, it can be tracked by watermarking techniques in tracking module.