Formal Query Languages for Secure Relational Databases.

Marianne Winslett, Kenneth Smith, Xiaolei Qian: Formal Query Languages for Secure Relational Databases. ACM Trans. Database Syst. 19(4): 626-662(1994)

@article{DBLP:journals/tods/WinslettSQ94,
  author    = {Marianne Winslett and
               Kenneth Smith and
               Xiaolei Qian},
  title     = {Formal Query Languages for Secure Relational Databases},
  journal   = {ACM Trans. Database Syst.},
  volume    = {19},
  number    = {4},
  year      = {1994},
  pages     = {626-662},
  ee        = {http://doi.acm.org/10.1145/195664.195675, db/journals/tods/WinslettSQ94.html},
  bibsource = {DBLP, http://dblp.uni-trier.de}
}

BibTeX

Abstract

The addition of stringent security specifications to the list of requirements for an application poses many new problems in DBMS design and implementation, as well as database design, use, and maintenance. Tight security requirements, such as those that result in silent masking of witholding of true information from a user or the introduction of false information into query answers, also raise fundamental questions about the meaning of the database and the semantics of accompanying query languages. In this paper, we propose a belief-based semantics for secure databases, which provides a semantics for databases that can "lie" about the state of the world, or about their knowledge about the state of the world, in order to preserve security. This kind of semantics can be used as a helpful retrofit for the proposals for a "multilevel secure" database model (a particularly stringent form of security), and may be useful for less restrictive security policies as well. We also propose a family of query languages for multilevel secure relational database applications, and base the semantics of those languages on our semantics for secure databases. Our query languages are free of the semantic problems associated with use of ordinary SQL in a multilevel secure context, and should be easy for users to understand and employ.

Copyright © 1994 by the ACM, Inc., used by permission. Permission to make digital or hard copies is granted provided that copies are not made or distributed for profit or direct commercial advantage, and that copies show this notice on the first page or initial screen of a display along with the full citation.

Joint ACM SIGMOD / IEEE Computer Society Anthology

CDROM Version: Load the CDROM "Volume 3 Issue 2, TODS 1991-1995, TKDE 1989-1992" and ...

Windows: Click the letter of your CD drive
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Mac: Click here
UNIX/LINUX: mount the CD and click on the path of your mount point:
/Anthology/An3-2 or /cdrom

DVD Version: Load ACM SIGMOD Anthology DVD 2" and ...

Windows: Click the letter of your CD drive
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Mac: Click here
UNIX/LINUX: mount the DVD and click on the path of your mount point:
/Anthology/aDVD2 or /dvd

BibTeX

Online Edition: ACM Digital Library

[Abstract and Index Terms]
[Full Text in PDF Format, 2376 KB]

References

[Akl and Denning 1987]: ...
[Bell and LaPadula 1974]: ...
[Binns 1993]: Leonard J. Binns: Inference and Cover Stories. DBSec 1992: 169-178 BibTeX
[Binns 1992a]: ...
[Binns 1992b]: Leonard J. Binns: Inference Through Secondary Path Analysis. DBSec 1992: 195-210 BibTeX
[Bonatti et al. 1992]: Piero A. Bonatti, Sarit Kraus, V. S. Subrahmanian: Declarative Foundations of Secure Deductive Databases. ICDT 1992: 391-406 BibTeX
[Ceri and Widom 1990]: Stefano Ceri, Jennifer Widom: Deriving Production Rules for Constraint Maintainance. VLDB 1990: 566-577 BibTeX
[Chellas 1980]: ...
[Costich and McDermott 1992]: ...
[Cuppens 1992]: Frédéric Cuppens: A Modal Logic Framework to Solve Aggregation Problems. DBSec 1991: 315-332 BibTeX
[Denning 1976]: Dorothy E. Denning: A Lattice Model of Secure Information Flow. Commun. ACM 19(5): 236-243(1976) BibTeX
[Denning et al. 1987]: ...
[Department of Defense 1985]: ...
[Froscher and Meadows 1989]: Judith N. Froscher, Catherine Meadows: Achieving a Trusted Database Management System Using Parallelism. DBSec 1988: 151-160 BibTeX
[Glasgow et al. 1992]: Janice I. Glasgow, Glenn H. MacEwen, Prakash Panangaden: A Logic for Reasoning About Security. ACM Trans. Comput. Syst. 10(3): 226-264(1992) BibTeX
[Haigh et al. 1991]: J. Thomas Haigh, Richard C. O'Brien, D. J. Thomsen: The LDV Secure Relational DBMS Model. DBSec 1990: 265-280 BibTeX
[Jajodia and Sandhu 1991]: Sushil Jajodia, Ravi S. Sandhu: Towards a Multilevel Secure Relational Data Model. SIGMOD Conference 1991: 50-59 BibTeX
[Jajodia and Sandhu 1990]: ...
[Korth and Silberschatz 1991]: Abraham Silberschatz, Henry F. Korth: Database System Concepts, 2nd Edition. McGraw-Hill Book Company 1991
BibTeX
[Imielinski and Lipski 1984]: Tomasz Imielinski, Witold Lipski Jr.: Incomplete Information in Relational Databases. J. ACM 31(4): 761-791(1984) BibTeX
[Liu and Sunderraman 1990]: Ken-Chih Liu, Rajshekhar Sunderraman: Indefinite and Maybe Information in Relational Databases. ACM Trans. Database Syst. 15(1): 1-39(1990) BibTeX
[Qian 1994a]: Xiaolei Qian: A Model-Theoretic Semantics of the Multilevel Relational Model. EDBT 1994: 201-214 BibTeX
[Qian 1994b]: ...
[Qian and Lunt 1992]: Xiaolei Qian, Teresa F. Lunt: Tuple-level vs Element-level Classification. DBSec 1992: 301-316 BibTeX
[Rabitti et al. 1991]: Fausto Rabitti, Elisa Bertino, Won Kim, Darrell Woelk: A Model of Authorization for Next-Generation Database Systems. ACM Trans. Database Syst. 16(1): 88-131(1991) BibTeX
[Sandhu and Jajodia 1991]: ...
[Sicherman et al. 1983]: George L. Sicherman, Wiebren de Jonge, Reind P. van de Riet: Answering Queries Without Revealing Secrets. ACM Trans. Database Syst. 8(1): 41-59(1983) BibTeX
[Smith 1990]: ...
[Smith and Winslett 1992a]: Kenneth Smith, Marianne Winslett: Entity Modeling in the MLS Relational Model. VLDB 1992: 199-210 BibTeX
[Smith and Winslett 1992b]: Kenneth Smith, Marianne Winslett: Multilevel Secure Rules: Integrating the Multilevel Secure and Active Data Models. DBSec 1992: 35-54 BibTeX
[Stonebraker et al. 1988]: Michael Stonebraker, Eric N. Hanson, Spyros Potamianos: The POSTGRES Rule Manager. IEEE Trans. Software Eng. 14(7): 897-907(1988) BibTeX
[Su and �zsoyoglu 1987]: ...
[Thuraisingham 1992]: Bhavani M. Thuraisingham: Multilevel Security for Multimedia Database Systems. DBSec 1990: 99-116 BibTeX
[Ting et al. 1992]: M.-Y. Hu, Steven A. Demurjian, T. C. Ting: User-Role Based Security Profiles for an Object-Oriented Design Model. DBSec 1992: 333-348 BibTeX
[Ullman 1988]: Jeffrey D. Ullman: Principles of Database and Knowledge-Base Systems, Volume I. Computer Science Press 1988, ISBN 0-7167-8158-1
Contents BibTeX
[Widom and Finkelstein 1990]: Jennifer Widom, Sheldon J. Finkelstein: Set-Oriented Production Rules in Relational Database Systems. SIGMOD Conference 1990: 259-270 BibTeX
[Zaniolo 1984]: Carlo Zaniolo: Database Relations with Null Values. J. Comput. Syst. Sci. 28(1): 142-166(1984) BibTeX

Referenced by

Hasan M. Jamil: Belief Reasoning in MLS Deductive Databases. SIGMOD Conference 1999: 109-120
Steven Dawson, Sabrina De Capitani di Vimercati, Patrick Lincoln, Pierangela Samarati: Minimal Data Upgrading to Prevent Inference and Association. PODS 1999: 114-125
Xiaolei Qian, Teresa F. Lunt: A Semantic Framework of the Multilevel Secure Relational Model. IEEE Trans. Knowl. Data Eng. 9(2): 292-301(1997)

BibTeX

ACM SIGMOD Anthology - DBLP: [Home | Search: Author, Title | Conferences | Journals]