Minimal data upgrading to prevent inference and association attacks

Despite advances in recent years in the area of mandatory access control in database systems, today’s information repositories remain vulnerable to inference and data association attacks that can result in serious information leakage. Such information leakage can be prevented by properly classifying information according to constraints that express relationships among the security levels of data objects. In this paper we address the problem of classifying information by enforcing explicit data classification as well as inference and association constraints. We formulate the problem of determining a classification that ensures satisfaction of the constraints, while at the same time guaranteeing that information will not be unnecessarily overclassified. We present an approach to the solution of this problem and give an algorithm implementing it which is linear in simple cases, and low-order polynomial (n) in the general case. We also analyze a variant of the problem that is NP-hard.

[1]  Patrick Lincoln,et al.  Efficient implementation of lattice operations , 1989, TOPL.

[2]  Ronald L. Rivest,et al.  Introduction to Algorithms , 1990 .

[3]  Matthew Morgenstern,et al.  Security and inference in multilevel database and knowledge-base systems , 1987, SIGMOD '87.

[4]  Robert E. Tarjan,et al.  Depth-First Search and Linear Graph Algorithms , 1972, SIAM J. Comput..

[5]  Sanjay Ranka,et al.  A Space-and-Time-Efficient Codeing Algorithm for Lattice Computations , 1994, IEEE Trans. Knowl. Data Eng..

[6]  Maurizio Talamo,et al.  A Data Structure for Lattice Representation , 1997, Theor. Comput. Sci..

[7]  Xiaolei Qian,et al.  View-based access control with high assurance , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[8]  Silvana Castano,et al.  Database Security , 1997, IFIP Advances in Information and Communication Technology.

[9]  Marianne Winslett,et al.  Formal query languages for secure relational databases , 1994, TODS.

[10]  Teresa F. Lunt,et al.  A MAC Policy Framework for Multilevel Relational Databases , 1996, IEEE Trans. Knowl. Data Eng..

[11]  Dorothy E. Denning,et al.  The SeaView Security Model , 1990, IEEE Trans. Software Eng..

[12]  Gultekin Özsoyoglu,et al.  Controlling FD and MVD Inferences in Multilevel Relational Database Systems , 1991, IEEE Trans. Knowl. Data Eng..

[13]  Mark E. Stickel Elimination of inference channels by optimal upgrading , 1994, Proceedings of 1994 IEEE Computer Society Symposium on Research in Security and Privacy.

[14]  Teresa F. Lunt Aggregation and inference: facts and fallacies , 1989, Proceedings. 1989 IEEE Symposium on Security and Privacy.

[15]  Jerzy Tiuryn,et al.  Satisfiability of Inequalities in a Poset , 1996, Fundam. Informaticae.

[16]  Fang Chen,et al.  The multilevel relational (MLR) data model , 1998, TSEC.

[17]  Sushil Jajodia,et al.  Toward a multilevel secure relational data model , 1991, SIGMOD '91.

[18]  Sabrina De Capitani di Vimercati,et al.  Specification and enforcement of classification and inference constraints , 1999, Proceedings of the 1999 IEEE Symposium on Security and Privacy (Cat. No.99CB36344).