Title :
A model for specifying multi-granularity integrity policies
Author_Institution :
Unisys Defense Syst., McLean, VA, USA
Abstract :
Systems which provide integrity controls are presented in terms of a request-response paradigm. This paradigm involves modeling the manner in which valid requests are made, a system´s method of deciding whether or not to service a request, and the manner in which a system state are performed only in authorized ways. A novel feature of the model is that integrity policies, which are restrictions on how data may be modified, are defined at multiple levels of granularity. At the finest and lowest level of granularity, restrictions are placed directly on how data items may be modified; at successive and more coarse levels of granularity, restrictions are defined in terms provided by lower levels. A hierarchical technique for organizing computations, nested transactions, is adapted for this purpose. Integrity policies expressed in this framework are properties of computations which can be specified and related to other desirable properties, such as concurrent execution and fault tolerance
Keywords :
data integrity; formal specification; security of data; concurrent execution; data items; fault tolerance; hierarchical technique; integrity controls; multi-granularity integrity policies; nested transactions; request-response paradigm; Character recognition; Computational modeling; Concurrent computing; Contracts; Control systems; Database systems; Fault tolerance; Operating systems; Organizing; Solid modeling;
Conference_Titel :
Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-1939-2
DOI :
10.1109/SECPRI.1989.36301
