Abstract
This paper describes a multilevel security policies integration methodology to endow tightly coupled federated database systems with a multilevel security system. The proposal is based on a schema integration process. It obtains, in a semi-automatic form, the ordered set of classification levels for the multilevel security system of the federation, and the translation functions between each ordered set belonging to each component database and the federated ordered set as well. The proposed methodology also includes a way to solve the problem of classification of the components of the Federated Schema generated during the integration process.
Chapter PDF
References
P.A. Bonatti, M.L. Sapino and V.S. Subrahmanian. Merging Heterogeneous Security Orderings. In E. Bertino, G. Kurth, H. Martella and E. Montolivo, editors, Computer Security — ESORICS 96 (4th European Symposium on Research in Computer Security, Rome, Italy, September 25–27, 1996, Proceedings), volume 1146 of LNCS, pages 183–197, Springer-Verlag, 1996.
D.E. Bell and L.J. LaPadula. Secure computer systems: Unified exposition and multics interpretation. Technical Report MTR-2997, (AY/W 020 445), The MITRE Corporation, Bedford, MA, Jul 1975.
M. Castellanos, F. Saltor and M. García-Solaco: A Canonical Data Model for the Interoperability among Object-Oriented and Relational Databases. In Özsu, Dayal and Valduriez (eds), Distributed Object Management, pages 309–314, Morgan Kaufmann,1994.
K.R. Dittrich and D. Jonscher. Current Trends in Database Technology and Their Impact on Security Concepts. In J. Biskup, M. Mongersten and C.E. Landwehr (eds), Database Security VIII (A-60),. Elsevier Science B.V. (North Holland) IFIP, pages 11–33, 1994.
L. Gong and X. Qian. Computational Issues in Secure Interoperation. IEEE Transactions on Software Engineering, 22(1):43–51, January 1996.
M. García-Solaco, F. Saltor and M. Castellanos. A Structure Based Schema Integration Methodology. In Proc. 11th Int. Conference on Data Engineering, Taipei. IEEE-CS Press, 1995.
N.B. Idris, W.A. Gray and M.A. Qutaishat. Integration of Secrecy Features in a Federated Database Environment. In T.F. Keefe and C.E. Landwehr, editors, Database Security VII (A-47), pages 89–109. Elsevier Science B.V. (North-Holland) IFIP, 1994.
J.K. Millen and T.F. Lunt. Security for Object-Oriented Database Systems. In Proceedings of the IEEE Computer Society Symposium on Research in Security and Privacy, Oakland, California, pages 260–272, May, 1992.
M. Morgenstern, T. Lunt, B. Thuraisingham and D. Spooner. Security issues in federated database systems: panel contributions. In C.E. Landwehr and S. Jajodia, editors, Database Security V (A-6): Status and Prospects, pages 131–148. Elsevier Science B.V. (North Holland) IFIP, 1992.
M. Oliva & F. Saltor. Integrating Multilevel Security Policies in Multilevel Federated Database Systems. In Proc. 14th Annual IFIP WG 11.3 Working Conference on Database Security, Schoorl, The Netherlands, August 21–23, 2000.
G. Pernul. Canonical Security Modeling for Federated Databases. In D.K. Hsiao, E.J. Neuhold, and R. Sacks-Davis, editors, Interoperable Database Systems (DS-5) (A-25), pages 207–222. Elsevier Science Publishers B.V. (North-holland) IFIP, 1993
M.E. Rodríguez, M. Oliva, F. Saltor and B. Campderrich. On Schema and Functional Architectures for Multilevel Secure and Multiuser Model Federated DB Systems. In S. Conrad, W. Hasselbring, A. Heuer, G. Saake, editors, Proceedings of the International CAiSE’97 Workshop on Engineering Federated Database Systems (EFDBS’97, Barcelona), Otto-von-Guericke-Universität Magdeburg, Fakultät für Informatik, preprint Nr. 6, pages 93–104, 1997.
A.P. Sheth and J.A. Larson. Federated Database Systems for Managing Distributed, Heterogeneous, and Autonomous Databases. ACM Computing Surveys, 22(3): 183–236, September 1990.
D.F. Stanat and D.F. McAllister. Discrete Mathematics in Computer Science. Prentice-Hall International Editions, 1977.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 Kluwer Academic Publishers
About this chapter
Cite this chapter
Oliva, M., Saltor, F. (2002). Integrating Multilevel Security Policies in Multilevel Federated Database Systems. In: Thuraisingham, B., van de Riet, R., Dittrich, K.R., Tari, Z. (eds) Data and Application Security. IFIP International Federation for Information Processing, vol 73. Springer, Boston, MA. https://doi.org/10.1007/0-306-47008-X_13
Download citation
DOI: https://doi.org/10.1007/0-306-47008-X_13
Publisher Name: Springer, Boston, MA
Print ISBN: 978-0-7923-7514-2
Online ISBN: 978-0-306-47008-0
eBook Packages: Springer Book Archive