论文信息 - Framework for the Security Component of an Ada DBMS

Framework for the Security Component of an Ada DBMS

This paper discusses a framework for the design of a security component for a secure Ada database management system (DBMS). It is part of a development effort to produce prototype technologies for the World Wide Military Command and Control System (WWMCCS) Information System (WIS). In this paper we present a series of criteria for evaluating database security approaches. We develop the high-level framework for the’security component of a DBMS and illustrate how it can support several alternative security models, which we compare using these criteria. The security enforced by the DBMS relies an appropriate security mechanisms enforced by the operating systems for operating system objects, such as files, used by the DBMS. We also present the security barrier or filter as an alternative or adjunct to the notion of a trusted computer base.

Gio Wiederhold | David L. Spooner | Arthur M. Keller | Deborah Heystek | John Salasin

[1] Peter J. Denning,et al. Protection: principles and practice , 1972, AFIPS '72 (Spring).

[2] Gio Wiederhold,et al. Reference model for ADA interfaces to database management systems , 1986, 1986 IEEE Second International Conference on Data Engineering.

[3] Ehud Gudes,et al. A Unifying Approach to the Design of a Secure Database Operating System , 1984, IEEE Transactions on Software Engineering.

[4] Bill R. Brykczynski,et al. ADA/SQL: A standard, portable ADA-DBMS interface , 1986, 1986 IEEE Second International Conference on Data Engineering.

[5] Arthur Michael Keller. Updating relational databases through views (complements, mappings, select, project, join) , 1985 .

[6] David K. Hsiao,et al. Full protection specifications in the semantic model for database protection languages , 1976, ACM '76.

[7] C. J. Date. An Introduction to Database Systems , 1975 .

[8] Eugene Wong,et al. Introduction to a system for distributed databases (SDD-1) , 1980, TODS.

[9] Bradford W. Wade,et al. An authorization mechanism for a relational database system , 1976, TODS.

[10] Michael Stonebraker,et al. The INGRES protection system , 1976, ACM '76.

[11] Arthur M. Keller,et al. Updating relational databases through views , 1985 .