A Multi-Level View Model for Secure Object-Oriented Databases

Abstract In this paper, we employ the view model given by Bertino to design a secure multi-level object-oriented database system. The central idea is to provide users with multi-level views derived from a single-level secure object-oriented database. The database operations performed on multi-level views are decomposed into a set of operations on single-level objects which can be implemented on any conventional mandatory security kernel. We show that this approach allows us to overcome the difficulties of handling content and context dependent classification, dynamic classification and aggregation and inference problems in multi-level object-oriented databases.

[1]  Silvana Castano,et al.  Database Security , 1997, IFIP Advances in Information and Communication Technology.

[2]  Serge Abiteboul,et al.  Objects and views , 1991, SIGMOD '91.

[3]  Bhavani M. Thuraisingham,et al.  Mandatory security in object-oriented database systems , 1989, OOPSLA '89.

[4]  M. B. Thuraisingham Mandatory security in object-oriented database systems , 1989, OOPSLA 1989.

[5]  Umeshwar Dayal,et al.  Queries and Views in an Object-Oriented Data Model , 1989, DBPL.

[6]  Stanley B. Zdonik,et al.  Object views: Extending the vision , 1990, [1990] Proceedings. Sixth International Conference on Data Engineering.

[7]  Dorothy E. Denning,et al.  A Multilevel Relational Data Model , 1987, 1987 IEEE Symposium on Security and Privacy.

[8]  Markus Tresch,et al.  Updatable Views in Object-Oriented Databases , 1991, DOOD.

[9]  Nora Cuppens-Boulahia,et al.  Decomposition of Multilevel Objects in an Object-Oriented Database , 1994, ESORICS.

[10]  Billy G. Claybrook Using Views in a Multilevel Secure Database Management System , 1983, 1983 IEEE Symposium on Security and Privacy.

[11]  Harry S. Delugach,et al.  Aerie: An Inference Modeling and Detection Approach for Databases , 1993, DBSec.

[12]  G. W. Smith Identifying and representing the security semantics of an application , 1988, [Proceedings 1988] Fourth Aerospace Computer Security Applications.

[13]  Selim G. Akl,et al.  Views for Multilevel Database Security , 1986, 1986 IEEE Symposium on Security and Privacy.

[14]  Bhavani M. Thuraisingham,et al.  Security checking in relational database management systems augmented with inference engines , 1987, Comput. Secur..

[15]  Teresa F. Lunt,et al.  Research Directions in Database Security , 1992, Springer New York.

[16]  Dorothy E. Denning,et al.  Inference Controls for Statistical Databases , 1983, Computer.

[17]  Elisa Bertino,et al.  A View Mechanism for Object-Oriented Databases , 1992, EDBT.

[18]  Sushil Jajodia,et al.  Integrating an object-oriented data model with multilevel security , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[19]  Elisa Bertino,et al.  Modeling Multilevel Entities Using Single Level Objects , 1993, DOOD.

[20]  Martin S. Olivier,et al.  A taxonomy for secure object-oriented databases , 1994, TODS.

[21]  Jackson Wilson Views as the security objects in a multilevel secure relational database management system , 1988, Proceedings. 1988 IEEE Symposium on Security and Privacy.

[22]  Bhavani M. Thuraisingham,et al.  Multilevel Security in Database Management Systems , 1987, Comput. Secur..

[23]  D. Elliott Bell,et al.  Secure Computer System: Unified Exposition and Multics Interpretation , 1976 .

[24]  Tsau Young Lin,et al.  Inference Secure Multilevel Databases , 1993, DBSec.

[25]  Jonathan K. Millen,et al.  Security for object-oriented database systems , 1992, Proceedings 1992 IEEE Computer Society Symposium on Research in Security and Privacy.

[26]  Frédéric Cuppens,et al.  A Modal Logic Framework to Solve Aggregation Problems , 1991, DBSec.

[27]  Richard J. Johnstone,et al.  Key updating flags in EFT-POS security systems , 1987, Comput. Secur..

[28]  G. E. Gajnak Some results from the entity/relationship multilevel secure DBMS project , 1988, [Proceedings 1988] Fourth Aerospace Computer Security Applications.

[29]  Janusz R. Getta,et al.  A Model of Authorization for Object-Oriented Databases based on Object Views , 1995, DOOD.

[30]  Bhavani M. Thuraisingham,et al.  Design of LDV: a multilevel secure relational database management system , 1990 .