The Community for Technology Leaders
2010 IEEE 26th International Conference on Data Engineering (ICDE 2010) (2010)
Long Beach, CA, USA
Mar. 1, 2010 to Mar. 6, 2010
ISBN: 978-1-4244-5445-7
pp: 940-943
Rimma V. Nehme , Microsoft Jim Gray Systems Lab, Madison, WI 53703 USA
Hyo-Sang Lim , Purdue University, West Lafayette, IN 47907 USA
Elisa Bertino , Purdue University, West Lafayette, IN 47907 USA
ABSTRACT
In this paper, we present FENCE framework that addresses the problem of continuous access control enforcement in dynamic data stream environments. The distinguishing characteristics of FENCE include: (1) the stream-centric approach to security, (2) the symmetric modeling of security for both continuous queries and streaming data, and (3) security-aware query processing that considers both regular and security-related selectivities. In FENCE, both data and query security restrictions are modeled in the form of streaming security metadata, called “security punctuations”, embedded inside data streams. We have implemented FENCE in a prototype DSMS and briefly summarize our performance observations.
INDEX TERMS
CITATION

H. Lim, R. V. Nehme and E. Bertino, "FENCE: Continuous access control enforcement in dynamic data stream environments," 2010 IEEE 26th International Conference on Data Engineering (ICDE 2010)(ICDE), Long Beach, CA, USA, 2010, pp. 940-943.
doi:10.1109/ICDE.2010.5447899
86 ms
(Ver 3.3 (11022016))