A Secure Kernelized Architecture for Multiple Object-Oriented Databases
نویسندگان
چکیده
We present a secure kernelized architecture for multilevel object-oriented database management systems. Our architecture is based on the notion of a message lter proposed by Jajodia and Kogan. It builds upon the typical architecture of current object-oriented database management systems. Since the operations mediated by the message lter are arbitrarily complex operations (as opposed to primitive reads and writes), a secure message lter requires careful attention to potential timing covert channels. Although the overall computation is logically a sequential one, to be secure we must actually execute pieces of the computation concurrently. This raises a synchronization problem for which we give a secure multiversion protocol. The fundamental problem solved in this paper is how to securely and correctly \write up" in terms of abstract operations.
منابع مشابه
A Secure Kernelized Architecture for Multilevel Object-oriented Databases
We present a secure kernelized architecture for mul-tilevel object-oriented database management systems. Our architecture is based on the notion of a message lter proposed by Jajodia and Kogan. It builds upon the typical architecture of current object-oriented database management systems. Since the operations mediated by the message lter are arbitrarily complex operations (as opposed to primiti...
متن کاملA Kernelized Architecture for Multilevel Secure Object-Oriented Databases Supporting Write-Up
This paper presents a kernelized architecture (i.e., an architecture in which no subject is exempted from the simple-security and ?-properties) for multilevel secure (mls) objectoriented database management systems (DBMS's) which support write-up. Relational mls DBMS's typically do not allow write-up, due to integrity problems arising from the blind nature of write-up operations in these system...
متن کاملSupporting Timing-Channel Free Computations in Multilevel Secure Object-Oriented Databases
In an earlier paper [3], Jajodia and Kogan proposed a message lter approach to enforcing mandatory security in multilevel object-oriented databases. The key idea in the message lter model is that all information exchange be permitted solely through messages and that security be enforced by a message lter component that mediates these messages. In a recent paper [8] the authors proposed a kernel...
متن کاملA Kernelized Architecture for Multilevel SecureObject - Oriented Databases
This paper presents a kernelized architecture (i.e., an architecture in which no subject is exempted from the simple-security and ?-properties) for multilevel secure (mls) objectoriented database management systems (DBMS's) which support write-up. Relational mls DBMS's typically do not allow write-up, due to integrity problems arising from the blind nature of write-up operations in these system...
متن کاملTiming - Channel Freecomputations in Multilevel Secureobject - Oriented
In an earlier paper 3], Jajodia and Kogan proposed a message lter approach to enforcing mandatory security in multilevel object-oriented databases. The key idea in the message lter model is that all information exchange be permitted solely through messages and that security be enforced by a message lter component that mediates these messages. In a recent paper 8] the authors proposed a kerneliz...
متن کامل