Inference channel-free integrity constraints in multilevel relational databases

Author

Qian, Xiaolei

Author_Institution

Comput. Sci. Lab., SRI Int., Menlo Park, CA, USA

fYear

1994

fDate

16-18 May 1994

Firstpage

158

Lastpage

167

Abstract

A multilevel relational database with tuple-level labeling is a relational database together with a mapping, which associates a set of levels in a security lattice with every tuple in every relation in the database. Integrity constraints represent the invariant properties of data in a multilevel relational database. We study the relationship between integrity and secrecy, and show that they are not necessarily in fundamental conflict. We identify common classes of constraints whose enforcement is free of both static and dynamic inference channels. We also extend the integrity checking mechanism by proper update semantics to remove dynamic inference channels in the enforcement of more general classes of constraints

Keywords

data integrity; inference mechanisms; relational databases; security of data; inference channel-free integrity constraints; mapping; multilevel relational databases; secrecy; security lattice; tuple-level labeling; update semantics; Access control; Computer science; Computer security; Contracts; Control systems; Data security; Information security; Laboratories; Lattices; Relational databases;

fLanguage

English

Publisher

ieee

Conference_Titel

Research in Security and Privacy, 1994. Proceedings., 1994 IEEE Computer Society Symposium on

Conference_Location

Oakland, CA

Print_ISBN

0-8186-5675-1

Type

conf

DOI

10.1109/RISP.1994.296584

Filename

296584