Maintaining the Confidentiality of Interoperable Databases with a Multilevel Federated Security System
نویسندگان
چکیده
When several databases with multilevel security policies are federated to form a tightly coupled federated database management system, heterogeneities such as different accreditation ranges must be overcome. This paper describes an extended methodology to integrate policies that use different lattices as accreditation ranges. A semi-automatic process obtains the federated accreditation range and needed translation functions among accreditation ranges in order to be validated by the security administrator. The multilevel federated security system, which ensures data confidentiality, is also described.
منابع مشابه
Integrating Multilevel Security Policies in Multilevel Federated Database Systems
Federated database systems solve the problem of sharing information among independent entities. When building and operating such a federated database system, it is necessary to protect data. Because of heterogeneities among security systems of component databases an integration of them is essential, taking into account new security features of the federation itself. This paper describes a multi...
متن کاملThe security API of IRO-DB
This paper describes the application programming interface (API) providing authorization and access control in IRO-DB. IRO-DB is an ODMB compliant federated database system supporting interoperable access between relational and object-oriented databases. The developed security API implements a federated, administrative, discretionary access control policy which is role-based but additionally su...
متن کاملSecurity issues for federated database systems
This paper describes security issues for federated database management systems set up for managing distributed, heterogeneous and autonomous multilevel databases. It builds on our previous work in multilevel secure distributed database management systems and on the results of others’ work in federated database systems. In particular, we define a multilevel secure federated database system and d...
متن کاملCAMAC: a context-aware mandatory access control model
Mandatory access control models have traditionally been employed as a robust security mechanism in multilevel security environments such as military domains. In traditional mandatory models, the security classes associated with entities are context-insensitive. However, context-sensitivity of security classes and flexibility of access control mechanisms may be required especially in pervasive c...
متن کاملSecurity Enforcement in the DOK Federated Database System
The Distributed Object Kernel (DOK) is a federated database system currently under development at the Royal Melbourne Institute of Technology. One of the issues currently under study is the development of a federated access control, as well a secure logical architecture allowing the DOK system to enforce federated security policies in the context of autonomous, distributed and heterogeneous dat...
متن کامل