Views for Multilevel Database Security

Denning, Dorothy E.; Akl, Selim G.; Heckman, Mark; Lunt, Teresa F.; Morgenstern, Matthew; Neumann, Peter G.; Schell, Roger R.

doi:10.1109/tse.1987.232889

Cited by 88 publications

(16 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In most social organizations, such as companies, governments and militaries, the employees are divided into different security classes according to their positions and access authorities [3,6,7,14,15,17,19,22,29,30]. The access control privilege is assigned into different privileged classes as a user tree-structure.…”

Section: Introductionmentioning

confidence: 99%

An efficient key assignment scheme for access control in a large leaf class hierarchy

Lo¹,

Hwang²,

Liu³

2011

Information Sciences

View full text Add to dashboard Cite

Section: Introductionmentioning

confidence: 99%

An efficient key assignment scheme for access control in a large leaf class hierarchy

Lo¹,

Hwang²,

Liu³

2011

Information Sciences

View full text Add to dashboard Cite

“…A rule-based expert IDS can detect some well-known intrusions with high detection rate, but it is difficult to detect novel intrusions, and its signature database needs to be updated manually and frequently (Lindqvist and Porras, 1999;Denning and Dorothy, 1987;Michael, 2002). A statistical-based IDS needs to collect enough data to build a complicated mathematical model, which is impractical in the case of complicated network traffic (Gordeev, 2000).…”

Section: Introductionmentioning

confidence: 99%

Intrusion detection using hierarchical neural networks

Zhang

Jiang

Kamel

2005

Pattern Recognition Letters

148

View full text Add to dashboard Cite

“…The SeaView policy requires that users be able to specify rules, called classification constraints [3], that define how information entering the system is to be assigned an access class. Classification constraints are similar to value constraints, except that they restrict the access classes of data elements rather than their values.…”

Section: Classification Constraintsmentioning

confidence: 99%

“…The project began by investigating how basic view concepts could be used for specifying instances of multilevel relations a t different access classes, for discretionary access control, for assigning labels to new data (through classification constraints), and for sanitization [3]. This investigation then led to the security policy and policy interpretation, to a basic strategy for a system design, to a multilevel relational data model 141, and to a formal security policv model that incorporates the essential security features of the multilevel relational data model (51.…”

Section: Introductionmentioning

confidence: 99%

The SeaView security model

Denning

Lunt

Schell

et al.

Proceedings. 1988 IEEE Symposium on Security and Privacy

Self Cite

View full text Add to dashboard Cite

A formal security policy model that uses basic view concepts for a secure multilevel relational database system is described. The model is formulated in two layers, one corresponding to a security kernel or reference monitor that enforces mandatory security, and the second defining multilevel relations and formalizing policies for labeling new and derived data, data consistency, discretionary security, and transaction consistency. This includes the policies for sanitization, aggregation, and downgrading. The model also defines application-independent properties for entity integrity, referential integrity, and polyinstantiation integrity.

show abstract

Views for Multilevel Database Security

Cited by 88 publications

References 8 publications

An efficient key assignment scheme for access control in a large leaf class hierarchy

An efficient key assignment scheme for access control in a large leaf class hierarchy

Intrusion detection using hierarchical neural networks

The SeaView security model

Contact Info

Product

Resources

About