Some Results from the Entity/Relationship Multilevel Secure DBMS Project

Gajnak, George E.

doi:10.1007/978-1-4612-2870-7_16

George E. Gajnak²

51 Accesses
1 Citations

Abstract

A multilevel secure version of the Entity/Relationship (E/R) data model has been developed. Its multilevel secure properties are based on three principles: the granularity principle, the dependency principle and the determinacy principle. These three principles are proposed as fundamental to the design of multilevel secure data models and databases. A comparison of the multilevel E/R model and the SeaView multilevel relational data model [LDN⁺88,DLS⁺87] reveals that the SeaView model violates determinacy. This violation, called referential ambiguity, comes from the interaction of polyinstantiation with the SeaView formulation of referential integrity. It is argued that referential ambiguity can produce undesirable side effects.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Committee on Multilevel Data Management Security Air Force Summer Study. Multilevel data management security. Technical report, Air Force Studies Board, National Research Council, National Academy Press, 1983. For Official Use Only.
Google Scholar
K.J. Biba. Integrity considerations for secure computer systems. Technical Report ESD-TR-76-372, USAF Electronic Systems Division, Bedford, Massachusetts, April 1977.
Google Scholar
D.E. Bell and L.J. LaPadula. Secure computer systems: Unified exposition and Multics interpretation. Technical Report ESD-TR-75-306, The MITRE Corporation, Bedford, Massachusetts, March 1976.
Google Scholar
P.P. Chen. A Preliminary Framework for Entity-Relationship Models. ER Institute, 1981.
Google Scholar
AOG Systems Corporation and Gemini Systems Inc. Multilevel secure entity-relationship DBMS. Draft, AOG Systems Corporation, May 19 1988.
Google Scholar
W.F. Clocksin and C.S. Mellish. Programming in Prolog. Springer-Verlag, second edition, 1984.
Google Scholar
[DLS⁺87]_D.E. Denning, T.F. Lunt, R.R. Schell, M. Heckman, and W.R. Shockley. A multilevel relational data model. In Proceedings of the 1987 IEEE Symposium on Security and Privacy, April 1987.
Google Scholar
M.D. Harris. Introduction to Natural Language Processing. Reston Publishing Co., 1985.
Google Scholar
[LDN⁺88]_T.F. Lunt, D.E. Denning, P.G. Neumann, R.R. Schell, M. Heckman, and W.R. Shockley. Final report vol. 1: Security policy and policy interpretation for a class A1 multilevel secure relational database system. Technical report, Computer Science Laboratory, SRI International, Menlo Park, California, 1988.
Google Scholar

Download references

Author information

Authors and Affiliations

Digital Equipment Corporation, USA
George E. Gajnak

Authors

George E. Gajnak
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

SRI International, 333 Ravenswood Avenue, Menlo Park, CA, 94025, USA
Teresa F. Lunt (Program Manager Secure Systems) (Program Manager Secure Systems)

Rights and permissions

Reprints and permissions

Copyright information

About this chapter

Cite this chapter

Gajnak, G.E. (1992). Some Results from the Entity/Relationship Multilevel Secure DBMS Project. In: Lunt, T.F. (eds) Research Directions in Database Security. Springer, New York, NY. https://doi.org/10.1007/978-1-4612-2870-7_16

Download citation

DOI: https://doi.org/10.1007/978-1-4612-2870-7_16
Publisher Name: Springer, New York, NY
Print ISBN: 978-0-387-97736-2
Online ISBN: 978-1-4612-2870-7
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics