The Entity-Relationship Model for Multilevel Security
نویسندگان
چکیده
A design environment for security critical database applications that should be implemented by using multilevel technology is proposed. For this purpose, the Entity-Relationship model is extended to capture security semantics. Important security semantics are defined and a language to express them in an ER model by means of security constraints is developed. The main contribution consists of the development and implementation of a rule-based system with which security semantics specified may be checked for conflicting constraints. The check involves application independent as well as application dependent integrity constraints and leads to a non conflicting conceptual representation of the security semantics of a multilevel secure database
منابع مشابه
CAMAC: a context-aware mandatory access control model
Mandatory access control models have traditionally been employed as a robust security mechanism in multilevel security environments such as military domains. In traditional mandatory models, the security classes associated with entities are context-insensitive. However, context-sensitivity of security classes and flexibility of access control mechanisms may be required especially in pervasive c...
متن کاملEntity Modeling in the MLS Relational Model
Previous proposals for a multilevel secure relational model have utilized syntactic integrity properties to control problems such as polyinstantiation, pervasive ambiguity, and proliferation of tuples due to updates. Although successive versions of these models have shown steady improvement, most thorny problems have been mitigated but not resolved. We believe that the major roadblock to progre...
متن کاملToward a Multilevel Secure Re- lational Data Model
Although there are several e orts underway to build multilevel secure relational database management systems, there is no clear consensus regarding what a multilevel secure relational data model exactly is. In part this lack of consensus on fundamental issues reects the subtleties involved in extending the classical (single-level) relational model to a multilevel environment. Our aim in this pa...
متن کاملToward a Multilevel Secure Relational
Although there are several eeorts underway to build multilevel secure relational database management systems , there is no clear consensus regarding what a multilevel secure relational data model exactly is. In part this lack of consensus on fundamental issues re-ects the subtleties involved in extending the classical (single-level) relational model to a multilevel environment. Our aim in this ...
متن کاملThe SeaView Security 593 Model
A multilevel database is intended to provide the security needed for database systems that contain data at a variety of classifications and serve a set of users having different clearances. This paper describes a formal security model for a such a system. The model is formulated in two layers, one corresponding to a reference monitor that enforces mandatory security, and the second an extension...
متن کامل