Issue No. 11 - November (1991 vol. 17)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/32.106974
<p>The use of an extended data model which represents both integrity and secrecy aspects of data is demonstrated. This Semantic Data Model for Security (SDMS) provides a technique that assists domain experts, security officers, and database designers in first understanding their security requirements, and then translating them into a good database design. Identifying security requirements at this semantic level provides the basis for analyzing the security requirements and the database design for inference and signaling vulnerabilities. Another contribution is a comprehensive taxonomy of security-relevant data semantics that must be captured and understood to implement a multilevel secure automated information system.</p>
inference vulnerability; extended data model; secrecy; Semantic Data Model for Security; security requirements; database design; signaling vulnerabilities; security-relevant data semantics; multilevel secure automated information system; database management systems; security of data
G. Smith, "Modeling Security-Relevant Data Semantics," in IEEE Transactions on Software Engineering, vol. 17, no. , pp. 1195-1203, 1991.