论文信息 - Knowledge-based security control for on-line database transaction processing systems

Knowledge-based security control for on-line database transaction processing systems

This paper considers the interrelationships between knowledge-based security, concurrency and recoverability in online database transaction processing systems (OLTP). We describe how OLTP can permit the users to carry out the desired actions, and concurrently activate scrutinizing transactions that identify the users with respect to their biometrical or other characteristics stored in a secure knowledge database. A finite state machine model is used to design protocols for recovery, under security breaches. It is shown that the best way to achieve concurrency and recovery in OLTP is through shadowing and strict-scheduling in conjunction with certification locking or timestamping. We must, however, bear in mind that security and concurrency have conflicting requirements and at best we can achieve a compromise between them.

E. V. Krishnamurthy | V. K. Murthy | E. Krishnamurthy | V. Murthy

[1] Jürgen Nehmer,et al. Operating systems of the 90s and beyond : International Workshop, Dagstuhl Castle, Germany, July 8-12, 1991 : proceedings , 1991 .

[2] D. Corkill. Blackboard Systems , 1991 .

[3] William Caelli. Computer security in the age of information : proceedings of the Fifth IFIP International Conference on Computer Security, IFIP/Sec '88, Gold Coast, Queensland, Australia, 19-21 May, 1988 , 1989 .

[4] B. Clifford Neuman. Protection and Security Issues for Future Systems , 1991, Operating Systems of the 90s and Beyond.

[5] Daniel Guinier. Sensitive security points in PC microcomputers: understanding for building secure solutions to intrusions , 1992, SGSC.

[6] Gérard Le Lann. Notes on Future Operating Systems for Real-Time Dependable Distributed Computing , 1991, Operating Systems of the 90s and Beyond.

[7] E. V. Krishnamurthy,et al. On the design and administration of secure database transactions , 1992, SGSC.

[8] H. P Nii,et al. Blackboard Systems , 1986 .

[9] André Grissonnanche. Security and protection in information systems : proceedings of the fourth IFIP TC 11 International Conference on Computer Security, IFIP/Sec '86, Monte Carlo, Monaco, 2-4 December, 1986 , 1989 .