Session Report: The Semantics of Data Classification
This session addressed classification of data from a semantic level. The object was to approach database security from a semantic level—to look at why data objects are classified. The importance of this approach is summed up by Bill Shockley’s comments after the session. Shockley believes that the current research efforts have reduced access control mechanisms to engineering problems. He believes that the next set of research problems to be attacked are at the semantic level, most of which involve database design issues.
KeywordsExpert System Security Policy Integrity Constraint Semantic Level Trojan Horse
Unable to display preview. Download preview PDF.
- [DAH+87]_D.E. Denning, S.G. Akl, M. Heckman, T.F. Lunt, M. Morgenstern, P.G. Neumann, and R.R. Schell. Views for multilevel database security. IEEE Transactions on Software Engineering, 13(2), February 1987.Google Scholar
- [LB87]T.F. Lunt and T.A. Berson. An expert system to classify and sanitize text. In Proceedings of the Third Aerospace Computer Security Conference, December 1987.Google Scholar
- [LDN+88][LDN+88]_T.F. Lunt, D.E. Denning, P.G. Neumann, R.R. Schell, M. Heckman, and W. R. Shockley. Final report vol. 1: Security policy and policy interpretation for a class A1 multilevel secure relational database system. Technical report, Computer Science Laboratory, SRI International, Menlo Park, California, 1988.Google Scholar
- [LMCar]P.E. Lehner, T.M. Mullin, and M.S. Cohen. When Should a Decision Maker Ignore the Advise of a Decision Aid?, forthcoming.Google Scholar
- [Lun89]T.F. Lunt. Aggregation and inference: Facts and fallacies. In Proceedings of the 1989 IEEE Symposium on Research in Security and Privacy, May 1989.Google Scholar