Security Correctness for Secure Nested Transactions
نویسندگان
چکیده
This article considers the synthesis of two long-standing lines of research in computer security: security correctness for multilevel databases, and language-based security. The motivation is an approach to supporting multilevel and multilateral security for a wide class of enterprise applications, those of concurrent transactional applications. The approach extends nested transactions with retroactive abort, a new form of semantics for transactional execution, motivated by security concerns. A semantics is given in terms of a local constrained labelled transition system, the TauOne calculus. This allows a noninterference result to be verified based on adapting results on observational equivalence from concurrency theory.
منابع مشابه
Transactional Correctness for Secure Nested Transactions
Secure Nested Transactions are an adaptation of traditional nested transactions to support the synergy of language-based security and multi-level database security. They have application in security for enterprise applications, where transactional semantics are a critical feature in middleware systems. This article considers correctness in terms of transactional properties for secure nested tra...
متن کاملVerified Order-Based Transaction Scheduling Scheme for Multilevel Secure Database Management Systems
While the secure transaction schedulers in multilevel secure database systems synchronize transactions cleared at different security levels, they must consider the problem of covert channel. Through the covert channel, malicious users leak secret information in a way of intentional interference among the transactions that they invoked. Much work had been done for closing the covert channel. Alt...
متن کاملPerformance Evaluation of Secure Concurrency Control Algorithm for Multilevel Secure Distributed Database Systems
Majority of the research in multilevel secure database management systems (MLS/DBMS) focuses primarily on centralized database systems. However, with the demand for higher performance and higher availability, database systems have moved from centralized to distributed architectures, and the research in multilevel secure distributed database management systems (MLS/DDBMS) is gaining more and mor...
متن کاملTowards a Uni ed Framework and Theory for Reasoning about Security and Correctness of Transactions in MultilevelDatabases
The development of transaction management schemes is essential to the maturing of database technology for multilevel secure environments. Accordingly, several concurrency control and transaction management schemes have appeared in the recent literature. However, a close examination of these proposals reveal that they are cast in the context of individual problems and specialized architectures. ...
متن کاملA Semantic-Based Transaction Processing Model for Multilevel Transactions
Multilevel transactions have been proposed for multilevel secure databases; in contrast to most proposals, such transactions allow users to read and write across multiple security levels. The security requirement that no high level operation in uence a low level operation often con icts with the atomicity requirement of the standard transaction processing model. In particular, others have shown...
متن کامل