The Entity-Relationship Model for Multilevel Security

A design environment for security critical database applications that should be implemented by using multilevel technology is proposed. For this purpose, the Entity-Relationship model is extended to capture security semantics. Important security semantics are defined and a language to express them in an ER model by means of security constraints is developed. The main contribution consists of the development and implementation of a rule-based system with which security semantics specified may be checked for conflicting constraints. The check involves application independent as well as application dependent integrity constraints and leads to a non conflicting conceptual representation of the security semantics of a multilevel secure database application.

[1]  Sushil Jajodia,et al.  Toward a multilevel secure relational data model , 1991, SIGMOD '91.

[2]  Simon R. Wiseman Abstract and Concrete Models for Secure Database Applications , 1991, DBSec.

[3]  Gary W. Smith,et al.  Modeling security-relevant data semantics , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[4]  Dorothy E. Denning,et al.  The SeaView security model , 1988, Proceedings. 1988 IEEE Symposium on Security and Privacy.

[5]  A Min Tjoa,et al.  The deductive filter approach to MLS database prototyping , 1993, Proceedings of 9th Annual Computer Security Applications Conference.

[6]  Peter J. Sell The SPEAR Data Design Method , 1992, DBSec.

[7]  J. Michael Spivey,et al.  The Z notation - a reference manual , 1992, Prentice Hall International Series in Computer Science.

[8]  Peter P. Chen The Entity-Relationship Model: Towards a unified view of Data , 1976 .

[9]  Peter P. Chen The entity-relationship model: toward a unified view of data , 1975, VLDB '75.

[10]  G.W. Smith The semantic data model for security: representing the security semantics of an application , 1990, [1990] Proceedings. Sixth International Conference on Data Engineering.

[11]  Marianne Winslett,et al.  Entity Modeling in the MLS Relational Model , 1992, VLDB.

[12]  D. Elliott Bell,et al.  Secure Computer System: Unified Exposition and Multics Interpretation , 1976 .

[13]  Susan Darling Urban ALICE: an assertion language for integrity constraint expression , 1989, [1989] Proceedings of the Thirteenth Annual International Computer Software & Applications Conference.