Mandatory security in object-oriented database systems

Thuraisingham, Meena

doi:10.1145/74877.74899

Cited by 54 publications

(11 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In order to accommodate such applications, the most common approach is to use a single-level object system and map the multilevel application objects onto several single-level objects. This approach, first proposed by Thuraisingham in a seminal paper [89] and referred to as multilevel object view approach, has two variants depending on whether inheritance or aggregation is used to support the multilevel view. Real multilevel object models are more difficult to handle and no satisfactory approach has been proposed.…”

Section: Mandatory Access Control Systems Formentioning

confidence: 99%

Database security - concepts, approaches, and challenges

Bertino

Sandhu

2005

IEEE Trans. Dependable and Secure Comput.

340

174

View full text Add to dashboard Cite

Abstract-As organizations increase their reliance on, possibly distributed, information systems for daily business, they become more vulnerable to security breaches even as they gain productivity and efficiency advantages. Though a number of techniques, such as encryption and electronic signatures, are currently available to protect data when transmitted across sites, a truly comprehensive approach for data protection must also include mechanisms for enforcing access control policies based on data contents, subject qualifications and characteristics, and other relevant contextual information, such as time. It is well understood today that the semantics of data must be taken into account in order to specify effective access control policies. Also, techniques for data integrity and availability specifically tailored to database systems must be adopted. In this respect, over the years the database security community has developed a number of different techniques and approaches to assure data confidentiality, integrity, and availability. However, despite such advances, the database security area faces several new challenges. Factors such as the evolution of security concerns, the "disintermediation" of access to data, new computing paradigms and applications, such as grid-based computing and ondemand business, have introduced both new security requirements and new contexts in which to apply and possibly extend current approaches. In this paper, we first survey the most relevant concepts underlying the notion of database security and summarize the most well-known techniques. We focus on access control systems, on which a large body of research has been devoted, and describe the key access control models, namely, the discretionary and mandatory access control models, and the role-based access control (RBAC) model. We also discuss security for advanced data management systems, and cover topics such as access control for XML. We then discuss current challenges for database security and some preliminary approaches that address some of these challenges.Index Terms-Data confindentiality, data privacy, relational and object databases, XML. ae 1I NTRODUCTIONA S organizations increase their adoption of database systems as the key data management technology for day-to-day operations and decision making, the security of data managed by these systems becomes crucial. Damage and misuse of data affect not only a single user or application, but may have disastrous consequences on the entire organization. The recent rapid proliferation of Webbased applications and information systems have further increased the risk exposure of databases and, thus, data protection is today more crucial than ever. It is also important to appreciate that data needs to be protected not only from external threats, but also from insider threats.Security breaches are typically categorized as unauthorized data observation, incorrect data modification, and data unavailability. Unauthorized data observation results in the disclosure of information to users no...

show abstract

Section: Mandatory Access Control Systems Formentioning

confidence: 99%

Database security - concepts, approaches, and challenges

Bertino

Sandhu

2005

IEEE Trans. Dependable and Secure Comput.

340

174

View full text Add to dashboard Cite

show abstract

“…(Thuraisingham (1989)) It is largely based on subjects (processes) and entities (objects) with assigned security levels. The following rules apply: .…”

Section: September 1993mentioning

confidence: 99%

A Review of Object Oriented Database Concepts and their Implementation

Cerpa

Dean

1993

AJIS

View full text Add to dashboard Cite

Object Oriented design and databases has attracted a great deal of attention in recent years. This article outlines and discusses the semantic data principles used inter alia in understanding Object Oriented concepts. To illustrate and lend substance to this discussion a list is presented of OODBMS implementations. Their weaknesses and strengths are analysed. And their suitability for specific applications is assessed. Finally we offer some conclusions about research in this area and the directions in which further development should proceed.

show abstract

“…Objects combine the properties of passive information repositories, represented by attributes and their values, with the properties of active entities, represented by methods and their invocations. Moreover, notions such as complex objects and inheritance hierarchies, make the objectoriented data model intrinsically complex [9,10,13]. However, despite this complexity, the use of an objectoriented approach offers several advantages from the security perspective.…”

Section: Introductionmentioning

confidence: 99%

“…Some approaches have been proposed for the application of mandatory policies to object-oriented systems [9,10,13]. An aspect common to all these proposals is the requirement that objects be single-level, i.e., all attributes of an object must have the same access class.…”

Section: Introductionmentioning

confidence: 99%