This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
A Semantic Framework of the Multilevel Secure Relational Model
March-April 1997 (vol. 9 no. 2)
pp. 292-301

Abstract—A multilevel relational database represents information in a multilevel state of the world, which is the knowledge of the truth value of a statement with respect to a level in a security lattice. We develop a semantic framework of the multilevel secure relational model with tuple-level labeling, which formalizes the notion of validity in multilevel relational databases. We also identify the multilevel security properties that precisely characterize the validity of multilevel relational databases, which can be maintained efficiently. Finally, we give an update semantics of the multilevel secure relational model that preserves both integrity and secrecy.

[1] R.K. Burns, "Referential Secrecy," Proc. IEEE Symp. Research Security and Privacy, pp. 133-142, 1990.
[2] R.K. Burns, "Integrity and Secrecy: Fundamental Conflicts in the Database Environment," Proc. Third RADC Database Security Workshop, Technical Report MTP 385, MITRE, pp. 37-40, 1991.
[3] D.E.R. Denning, Cryptography and Data Security. Addison-Wesley, 1983.
[4] J. Glasgow, G. MacEwen, and P. Panangaden, "A Logic for Reasoning about Security," ACM Trans. Computer Systems, vol. 10, no. 3, pp. 226-264, Aug. 1992.
[5] S. Jajodia and R. Sandhu, "Polyinstantiation Integrity in Multilevel Relations," Proc. IEEE Symp. Research Security and Privacy, pp. 104-115, 1990.
[6] S. Jajodia and R. Sandhu, “Towards a Multilevel Secure Relational Data Model,” Proc. Int'l Conf. Management of Data (SIGMOD), pp. 50-59, 1991.
[7] S. Jajodia, R. Sandhu, and E. Sibley, "Update Semantics of Multilevel Relations," Proc. Sixth Ann. Computer Security Applications Conf., pp. 103-112, 1990.
[8] C.E. Landwehr, "Formal models for computer security," ACM Computing Survey, vol. 13, no. 3, pp. 247-278, Sept. 1981.
[9] T.F. Lunt, "The True Meaning of Polyinstantiation: Proposal for an Operational Semantics for a Multilevel Relational Database System," Proc. Third RADC Database Security Workshop, Technical Report MTP 385, MITRE, pp. 26-36, 1990.
[10] T.F. Lunt, "Polyinstantiation: An Inevitable Part of a Multilevel World," Proc. Fourth IEEE Workshop Computer Security Foundations, pp. 236-238, 1991.
[11] T.F. Lunt, D.E. Denning, R.R. Schell, M. Heckman, and W.R. Shockley, "The Seaview Security Model," IEEE Trans. Software Eng., vol. 16, no. 6, pp. 593-607, June 1990.
[12] T.F. Lunt and D. Hsieh, "Update Semantics for a Multilevel Relational Database System," S. Jajodia and C. Landwehr, eds., Database Security, IV: Status and Prospects, pp. 281-296. North-Holland, 1991.
[13] C. Meadows and S. Jajodia, "Integrity vs. Security in Multi-Level Secure Databases," C.E. Landwehr, ed., Database Security, Status, and Prospects, pp. 89-101.Amsterdam: North-Holland, 1988.
[14] J.-M. Nicolas and H. Gallaire, "Data Base: Theory vs. Interpretation," H. Gallaire and J. Minker, eds., Logic and Databases, pp. 33-54, Plenum Press, 1978.
[15] X. Qian, "Inference Channel-Free Integrity Constraints in multilevel Relational Databases," Proc. IEEE Symp. Research Security and Privacy, pp. 158-167, May 1994.
[16] X. Qian and T.F. Lunt, "Tuple-Level vs. Element-Level Classification," B.M. Thuraisingham and C.E. Landwehr, eds., Database Security, VI: Status and Prospects, pp. 301-315. North-Holland, 1993.
[17] R. Sandhu and S. Jajodia, "Eliminating Polyinstantiation Securely," Computers and Security, vol. 11, pp 547-562, 1992.
[18] R. Sandhu, S. Jajodia, and T.F. Lunt, "A New Polyinstantiation Integrity Constraint for Multilevel Relations," Proc. Third IEEE Workshop Computer Security Foundations, pp. 159-165, 1990.
[19] K. Smith and M. Winslett, "Entity Modeling in the MLS Relational Model," Proc. 18th Int'l Conf. Very Large Data Bases, pp. 199-210, 1992.
[20] B.M. Thuraisingham, "A Nonmonotonic Typed Multilevel Logic for Multilevel Secure Database/Knowledge-Base Management Systems," Proc. Fourth IEEE Workshop Computer Security Foundations, pp. 127-138, 1991.
[21] J. Ullman, Principles of Database and Knowledge-Base Systems, vol. 1. Computer Science Press, 1988.
[22] M. Winslett, K. Smith, and X. Qian, “Formal Query Languages for Secure Relational Databases,” ACM Trans. Database Systems, vol. 19, no. 4, pp. 626–662, 1994.
[23] S.R. Wiseman, "Control of Confidentiality in Databases," Computers and Security, vol. 9, no. 6, pp. 529-537, Oct. 1990.
[24] S.R. Wiseman, "The Control of Integrity in Databases," S. Jajodia and C.E. Landwehr, eds., Database Security, IV: Status and Prospects, pp. 191-204. North-Holland, 1991.

Index Terms:
Inference channels, integrity constraints, multilevel databases, multilevel security, relational model, update semantics.
Citation:
Xiaolei Qian, Teresa F. Lunt, "A Semantic Framework of the Multilevel Secure Relational Model," IEEE Transactions on Knowledge and Data Engineering, vol. 9, no. 2, pp. 292-301, March-April 1997, doi:10.1109/69.591453
Usage of this product signifies your acceptance of the Terms of Use.