Eliminating polyinstantiation securely
نویسندگان
چکیده
Polyinstantiation has generated a great deal of controversy lately. Some have argued that pol~nstantia~on and integriry are fundamentally incompatible, and have proposed alternatives to polyinstantiation. Others have argued about the correct definition of polyinstantiation and its operational semantics. In this paper we provide a fresh analysis of the basic problem that we are rrying ro solve; that is, how can an honest database keep secrets? Our analysis leads us to the concept of restricted polyinstantiation wherein we show how to solve this problem without compromising on any of the following requirements: secrecy, integrity, availability-of-service, element-level labeling and high assurance. This is the first solution to meet all these requirements simultaneously.
منابع مشابه
Referential Integrity in Multilevel Secure Databases
This paper studies referential integrity in multilevel relations with element-level labeling. Our principal contribution is resolution of an impasse left by previous work in this area. We show that the previous work leaves us with a choice of either accepting referential ambiguity, or severely curtailing the modeling power of multilevel relations. We then show how to escape this impasse by elim...
متن کاملPolyinstantation for Cover Stories
In this paper we study the use of polyinstantiation, for the purpose of implementing cover stories in multilevel secure relational database systems. We de ne a particular semantics for polyinstantiation called PCS (i.e., polyinstantiation for cover stories). PCS allows two alternatives for each attribute (or attribute group) of a multilevel entity: (i) no polyinstantiation, or (ii) polyinstanti...
متن کاملSolutions to the Polyinstantiation Problem
What distinguishes a multilevel database from ordinary single-level ones? In a multilevel world, as we raise a user's clearance new facts emerge; conversely, as we lower a user's clearance some facts get hidden. Therefore, users with different clearances see different versions of reality. Moreover, these different versions must be kept coherent and consistent — both individually and relative to...
متن کاملHonest Databases That Can Keep Secrets
Polyinstantiation has generated a great deal of controversy lately. Some have argued that polyinstantiation and integrity are fundamentally incompatible, and have proposed alternatives to polyinstantiation. Others have argued about the correct de nition of polyinstantiation and its operational semantics. In this paper we provide a fresh analysis of the basic problem that we are trying to solve,...
متن کاملA New Polyinstantiation Integrity Constraint for Multilevel Relations
We propose a new polyinstantiation integrity constraint for multilevel relations based on the intuitive idea that every entity in a relation can have at most one tuple for every access class. We discuss the consequences of this property and some of its variations.
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- Computers & Security
دوره 11 شماره
صفحات -
تاریخ انتشار 1992