Object-Oriented Modeling of Security Semantics

For applications with high requirements on the confidentiality of data a level-based access control policy may be appropriate. Designing such security critical applications is a less understood issue and thus complicated task. To guide a security administrator or database designer and in order to simplify the design activity several guidelines and a powerful modeling technique are necessary. This paper proposes an object-oriented modeling for multilevel secure database application design. The technique is build around the concept of application dependent classification constraints, supports a static, functional, as well as a dynamic view of the application, and offers an underlying design method. By means of an example we describe how the different models relate to each other and how a conceptualization of a multilevel secure application may be constructed. Object-Oriented Modeling of Security Semantics Abstract. For applications with high requirements on the confidentiality of data a level-based access control policy may be appropriate. Designing such security critical applications is a less understood issue and thus complicated task. To guide a security administrator or database designer and in order to simplify the design activity several guidelines and a powerful modeling technique are necessary. This paper proposes an object-oriented modeling for multilevel secure database application design. The technique is build around the concept of application dependent classification constraints, supports a static, functional, as well as a dynamic view of the application, and offers an underlying design method. By means of an example we describe how the different models relate to each other and how a conceptualization of a multilevel secure application may be constructed. For applications with high requirements on the confidentiality of data a level-based access control policy may be appropriate. Designing such security critical applications is a less understood issue and thus complicated task. To guide a security administrator or database designer and in order to simplify the design activity several guidelines and a powerful modeling technique are necessary. This paper proposes an object-oriented modeling for multilevel secure database application design. The technique is build around the concept of application dependent classification constraints, supports a static, functional, as well as a dynamic view of the application, and offers an underlying design method. By means of an example we describe how the different models relate to each other and how a conceptualization of a multilevel secure application may be constructed.