Reseach on Mandatory Access Control in LogicSQL Database System

Author

Zhang, Mingsheng ; Ma, Xinqiang

Author_Institution

Sch. of Econ. & Manage., Guizhou Univ. for Nat., Guiyang, China

fYear

2010

fDate

7-9 May 2010

Firstpage

4287

Lastpage

4290

Abstract

The secure limitation in the database system only taking discretionary access control is discussed. This paper proposes a mandatory access control model for multilevel secure DBMS and discusses the problems of labeling object in tuples, security label, covert channels and poly-instantiation. The mandatory access control model requires that all users and resources are classified and assigned a security label, which is a combination of a hierarchical security level and non-hierarchical security categories. As mandatory access control plays an important role in highly secured database system, the model is analyzed and implemented in independent copyright database management system LogicSQL. In addition, the model is designed at least with a B1 security level for LogicSQL database.

Keywords

SQL; authorisation; copyright; database management systems; DBMS; copyright database management system; discretionary access control; hierarchical security level; logic SQL database system; mandatory access control; Access control; Biological system modeling; Computational modeling; Computers; Database systems; Presses; LogicSQL Label; discretionary access control; mandatory access control; multilevel security;

fLanguage

English

Publisher

ieee

Conference_Titel

E-Business and E-Government (ICEE), 2010 International Conference on

Conference_Location

Guangzhou

Print_ISBN

978-0-7695-3997-3

Type

conf

DOI

10.1109/ICEE.2010.1077

Filename

5591220