Abstract
The implications of multilevel security on database concurrency control are explored. Transactions are vital for multilevel secure database management systems (MLS/DBMSs) because they provide transparency to concurrency and to failure. Concurrent execution of transactions may lead to contention among subjects for access to data, which in MLS/DBMSs may lead to security problems. An abstraction of security models in terms of the transactions which they produce is presented. The notion of DC-Security, which identifies a class of covert channels that are caused by contention for access to shared data, is introduced. This notion is useful for evaluating the security of transaction schedulers. A framework for multilevel secure schedulers which allows analysis of a schedulers' security properties at the protocol level is presented. Necessary and sufficient conditions are developed for DC-Security in this framework and proved using noninterference. A wide range of schedulers is evaluated against these conditions.
Original language | English (US) |
---|---|
Title of host publication | Proceedings - Sixth International Conference on Data Engineering |
Publisher | Publ by IEEE |
Pages | 337-344 |
Number of pages | 8 |
ISBN (Print) | 0818620250 |
State | Published - 1990 |
Event | Proceedings - Sixth International Conference on Data Engineering - Los Angeles, CA, USA Duration: Feb 5 1990 → Feb 9 1990 |
Publication series
Name | Proceedings - Sixth International Conference on Data Engineering |
---|
Other
Other | Proceedings - Sixth International Conference on Data Engineering |
---|---|
City | Los Angeles, CA, USA |
Period | 2/5/90 → 2/9/90 |