Securing an object relational database
暂无分享,去创建一个
A form of security labelling is added to a COTS object relational DBMS. The labelling is discretionary and so provides mediated access to data, but does not defend against the inappropriate release of data through the database, whether by Trojan Horse software or a treacherous user. To counter these risks, business constraints are imposed to ensure that a user sanctions the release of any data and adequate business related accounting information is recorded. The business constraints are implemented using the features of the object relational DBMS.
[1] Simon R. Wiseman,et al. A NEW STRATEGY FOR COTS IN CLASSIFIED SYSTEMS , 1997 .
[2] Ravi S. Sandhu,et al. Separation of Duties in Computerized Information Systems , 1990, DBSec.