Title :
Modeling security-relevant data semantics
Author_Institution :
US Nat. Defense Univ., Washington, DC, USA
Abstract :
A database system must have knowledge of the semantics (the properties) of the data it manages to accomplish its tasks. For a multilevel secure database system to provide effective multilevel support to users, it must have knowledge of the security-relevant data semantics. The use of an extended data model that represents both integrity and secrecy aspects of data is presented. The technique can be used as a database design tool and, more importantly, as a vehicle by which domain experts, database designers, and security officers can precisely define the security requirements for an application domain. A second contribution is a comprehensive taxonomy of security-relevant data semantics that must be captured and understood to implement a multilevel secure automated information system
Keywords :
database management systems; modelling; security of data; application domain; automated information system; database designers; database system; domain experts; integrity; modelling; security-relevant data semantics; taxonomy; Application software; Data models; Data security; Database systems; Information security; Knowledge management; Operating systems; Relational databases; Resource management; Vehicles;
Conference_Titel :
Research in Security and Privacy, 1990. Proceedings., 1990 IEEE Computer Society Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-2060-9
DOI :
10.1109/RISP.1990.63866
