Title :
A security policy for an A1 DBMS (a trusted subject)
Author_Institution :
TRW, Redondo Beach, CA, USA
Abstract :
A security policy for a multilevel secure relational database management system (DBMS) is stated. The DBMS is implemented as a trusted subject that can be hosted on any of a variety of secure operating systems. Accordingly, the policy is stated in two parts: (1) a generic policy for the operating-system TCB (trusted computing base) layer that states requirements that any operating system must meet so that the DBMS can be hosted on it; and (2) the policy of the DBMS TCB layer. It is argued that the DBMS can be evaluated for each operating system on which it is hosted without reevaluating the underlying operating system. Rationale is given for implementing the DBMS as a trusted subject rather than using a Hinke-Schaefer architecture. The policy addresses secrecy and integrity
Keywords :
relational databases; security of data; A1 DBMS; DBMS TCB layer; Hinke-Schaefer architecture; generic policy; integrity; multilevel secure relational database management system; operating-system TCB layer; secrecy; secure operating systems; security policy; trusted computing base; trusted subject; Authentication; Certification; Computer crime; Data security; Documentation; Information security; Operating systems; Prototypes; Relational databases; Variable speed drives;
Conference_Titel :
Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-1939-2
DOI :
10.1109/SECPRI.1989.36286
