Abstract
In the context of OODB (Object-Oriented DataBases), several multilevel security models appeared in the literature. In this paper, we are mainly interested in the MultiView model [BCCGY93, BCCGY94a]. Our first objective is not to propose a new security model but rather to present the MultiView model in a formal way. Another objective is to extend the MultiView model to include new security functionalities, in particular the protection of the database schema. Our approach can be sum up as follows. We propose a language based on first-order logic to represent an OODB content and specify integrity constraints which must be enforced in an OODB. A first security model called Single-View is then defined. In this security model, every atomic formula of the language used to represent the OODB is a piece of information we may associate with a classification level. We also derive general theorems which must be enforced when classifying each piece of information. Finally, we show how to refine the Single-View model to obtain the MultiView model. We give a sketch of implementation of the MultiView model.
Chapter PDF
Similar content being viewed by others
Keywords
Keyword Codes
References
P. Ammann, F. Jaeckle, and S. Jajodia. A Two Snapshot Algorithm for Concurrency Control in Multi-Level Secure Databases. In IEEE Symposium on Security and Privacy, Oakland, 1992.
N. Boulahia-Cuppens, F. Cuppens, A. Gabillon, and K. Yazdanian. Multi-View Model for Multilevel Object Oriented Databases. In Ninth Annual Computer Security Applications Conference, Orlando, Florida, 1993.
N. Boulahia-Cuppens, F. Cuppens, A. Gabillon, and K. Yazdanian. Decomposition of Multilevel Objects in an Object-Oriented Database. In European symposium on research in computer security Brighton, UK, 1994. Springer Verlag.
N. Boulahia-Cuppens, F. Cuppens, A. Gabillon, and K. Yazdanian. Virtual View Model to Design a Secure Object-Oriented Database. In Proceedings of the 17th National Computer Security Conference, Baltimore, USA, 1994.
E. Bertino and S. Jajodia. Modeling Multilevel Entities Using Single-level Objects. In Proceedings of the Third Conference on Deductive and Object-Oriented Databases volume 760 of Lecture Notes in Artificial Intelligence. Springer Verlag, 1993.
E. Bertino, L. Mancini, and S. Jajodia. Collecting Garbage in Multilevel Secure Object Stores. In IEEE Symposium on Security and Privacy, Oakland, 1994.
L. Cholvy and F. Cuppens. Providing Consistent Views in a Polyinstantiated Database. In J. Biskup, M. Morgenstern, and C. Landwehr, editors, Database Security, 8: Status and Prospects. North-Holland, 1995. Results of the IFIP WG 11.3 Workshop on Database Security.
F. Cuppens and R. Demolombe. How to recognize topics to provide cooperative answering. Information Systems, 14 (2), 1989.
A. Gabillon. Sécurité Multi-Niveaux dans les Bases de Données à Objets. Thèse de Doctorat. ENSAE, 1995.
J. T. Haigh, R. C. O’Brien, and D. J. Thomsen. The LDV Secure Relational DBMS Model. In Database Security, IV: Status and Prospects. North-Holland, 1991. Results of the IFIP WG 11.3 Workshop on Database Security.
S. Jajodia and B. Kogan. Integrating an Object-Oriented Data Model with Multi-Level Security. In IEEE Symposium on Security and Privacy, Oakland, 1990.
T. Keefe and W. Tsai. Multiversion Concurrency Control for Multilevel Secure Database Systems. In IEEE Symposium on Security and Privacy, Oakland, 1990.
T. Keefe and W. Tsai. Prototyping the SODA Security Model. In Database Security, 3: Status and Prospects. North-Holland, 1990. Results of the IFIP WG 11.3 Workshop on Database Security.
T. Keefe, W. Tsai, and M. Thuraisingham. SODA: A Secure Object-Oriented Database System. Computer and Security, 8 (6), 1989.
T. F. Lunt. Multilevel Security for Object-Oriented Database Systems. In D. L. Spooner and C. Landwehr, editors, Database Security, III: Status and Prospects. North-Holland, 1990. Results of the IFIP WG 11.3 Workshop on Database Security.
T. F. Lunt. Polyinstantiation: an inevitable part of a multilevel world. In Proc. of the computer security foundations workshop, Franconia, 1991.
J. McDermott and S. Jajodia. Orange Locking: Channel-Free Database Concurrency Control Via Locking. In Database Security, 6: Status and Prospects. North-Holland, 1993. Results of the IFIP WG 11.3 Workshop on Database Security.
J. K. Millen and T. F. Lunt. Security for Object-Oriented Database Systems. In IEEE Symposium on Security and Privacy, Oakland, 1992.
J. Meseguer and X. Qian. A Logical Semantics for Object-Oriented Databases. In ACM SIGMOD, Washington D.C, 1993.
M. S. Olivier and S. H. Von Solms. A Taxonomy for Secure Object-Oriented Databases. ACM Tansactions on Database Systems, 19 (1), March 1994.
R. Sandhu and S. Jajodia. Polyinstantiation for cover stories. In European symposium on research in computer security, Toulouse, France, 1992. Springer Verlag.
M. Schaefer, P. Martel, T. Kanawan, and V. Lyons. Multilevel Data Model for the Trusted ONTOS Prototype. In Ninth Annual IFIP WG 11.3 Working Conference on Database Security, Rensselaerville, USA, 1995.
R. J. Wieringa. A Formalization of Objects Using Equational Dynamic Logic. In C. Delobel, M. Keifer, and Y. Masunaga, editors, Second International Conference DOOD’91, volume 566 of Lecture Notes in Computer Science, Munich, Germany, 1991. Springer-Verlag.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1997 IFIP International Federation for Information Processing
About this chapter
Cite this chapter
Cuppens, F., Gabillon, A. (1997). A Logical Approach to Model a Multilevel Object Oriented Database. In: Samarati, P., Sandhu, R.S. (eds) Database Security. IFIP Advances in Information and Communication Technology. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35167-4_9
Download citation
DOI: https://doi.org/10.1007/978-0-387-35167-4_9
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-5041-2900-8
Online ISBN: 978-0-387-35167-4
eBook Packages: Springer Book Archive