Securing an object relational database

A
ACSAC
1997
13th Annual Computer Security Applications Conference (ACSAC '97)
Abstract - Securing an object relational database

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by S. Lewis Articles by S. Wiseman

13th Annual Computer Security Applications Conference (ACSAC '97)

San Diego, CA

December 08-December 12

ISBN: 0-8186-8274-4

	ASCII Text	x
	S. Lewis, S. Wiseman, "Securing an object relational database," Computer Security Applications Conference, Annual, pp. 59, 13th Annual Computer Security Applications Conference (ACSAC '97), 1997.

	BibTex	x
	@article{ 10.1109/CSAC.1997.646175, author = {S. Lewis and S. Wiseman}, title = {Securing an object relational database}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {1997}, isbn = {0-8186-8274-4}, pages = {59}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.1997.646175}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Securing an object relational database SN - 0-8186-8274-4 SP EP A1 - S. Lewis, A1 - S. Wiseman, PY - 1997 KW - bject-oriented databases; object relational database security; security labelling; COTS; data access; Trojan Horse software; risks; business constraints; accounting information; commercial off the shelf VL - 0 JA - Computer Security Applications Conference, Annual ER -

S. Lewis, Defence Evaluation & Res. Agency, Malvern, UK

S. Wiseman, Defence Evaluation & Res. Agency, Malvern, UK

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.1997.646175

A form of security labelling is added to a COTS object relational DBMS. The labelling is discretionary and so provides mediated access to data, but does not defend against the inappropriate release of data through the database, whether by Trojan Horse software or a treacherous user. To counter these risks, business constraints are imposed to ensure that a user sanctions the release of any data and adequate business related accounting information is recorded. The business constraints are implemented using the features of the object relational DBMS.

Index Terms:

bject-oriented databases; object relational database security; security labelling; COTS; data access; Trojan Horse software; risks; business constraints; accounting information; commercial off the shelf

Citation:

S. Lewis, S. Wiseman, "Securing an object relational database," acsac, pp.59, 13th Annual Computer Security Applications Conference (ACSAC '97), 1997

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.