Multilevel secure database concurrency control

T. F. Keefe, W. T. Tsai, J. Srivastava

Research output: Chapter in Book/Report/Conference proceedingConference contribution

17 Citations (Scopus)

Abstract

The implications of multilevel security on database concurrency control are explored. Transactions are vital for multilevel secure database management systems (MLS/DBMSs) because they provide transparency to concurrency and to failure. Concurrent execution of transactions may lead to contention among subjects for access to data, which in MLS/DBMSs may lead to security problems. An abstraction of security models in terms of the transactions which they produce is presented. The notion of DC-Security, which identifies a class of covert channels that are caused by contention for access to shared data, is introduced. This notion is useful for evaluating the security of transaction schedulers. A framework for multilevel secure schedulers which allows analysis of a schedulers' security properties at the protocol level is presented. Necessary and sufficient conditions are developed for DC-Security in this framework and proved using noninterference. A wide range of schedulers is evaluated against these conditions.

Original languageEnglish
Title of host publicationProceedings - Sixth International Conference on Data Engineering
PublisherPubl by IEEE
Pages337-344
Number of pages8
ISBN (Print)0818620250
Publication statusPublished - 1 Dec 1990
EventProceedings - Sixth International Conference on Data Engineering - Los Angeles, CA, USA
Duration: 5 Feb 19909 Feb 1990

Publication series

NameProceedings - Sixth International Conference on Data Engineering

Other

OtherProceedings - Sixth International Conference on Data Engineering
CityLos Angeles, CA, USA
Period5/2/909/2/90

    Fingerprint

ASJC Scopus subject areas

  • Engineering(all)

Cite this

Keefe, T. F., Tsai, W. T., & Srivastava, J. (1990). Multilevel secure database concurrency control. In Proceedings - Sixth International Conference on Data Engineering (pp. 337-344). (Proceedings - Sixth International Conference on Data Engineering). Publ by IEEE.