Abstract
A multilevel secure version of the Entity/Relationship (E/R) data model has been developed. Its multilevel secure properties are based on three principles: the granularity principle, the dependency principle and the determinacy principle. These three principles are proposed as fundamental to the design of multilevel secure data models and databases. A comparison of the multilevel E/R model and the SeaView multilevel relational data model [LDN+88,DLS+87] reveals that the SeaView model violates determinacy. This violation, called referential ambiguity, comes from the interaction of polyinstantiation with the SeaView formulation of referential integrity. It is argued that referential ambiguity can produce undesirable side effects.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Committee on Multilevel Data Management Security Air Force Summer Study. Multilevel data management security. Technical report, Air Force Studies Board, National Research Council, National Academy Press, 1983. For Official Use Only.
K.J. Biba. Integrity considerations for secure computer systems. Technical Report ESD-TR-76-372, USAF Electronic Systems Division, Bedford, Massachusetts, April 1977.
D.E. Bell and L.J. LaPadula. Secure computer systems: Unified exposition and Multics interpretation. Technical Report ESD-TR-75-306, The MITRE Corporation, Bedford, Massachusetts, March 1976.
P.P. Chen. A Preliminary Framework for Entity-Relationship Models. ER Institute, 1981.
AOG Systems Corporation and Gemini Systems Inc. Multilevel secure entity-relationship DBMS. Draft, AOG Systems Corporation, May 19 1988.
W.F. Clocksin and C.S. Mellish. Programming in Prolog. Springer-Verlag, second edition, 1984.
[DLS+87]_D.E. Denning, T.F. Lunt, R.R. Schell, M. Heckman, and W.R. Shockley. A multilevel relational data model. In Proceedings of the 1987 IEEE Symposium on Security and Privacy, April 1987.
M.D. Harris. Introduction to Natural Language Processing. Reston Publishing Co., 1985.
[LDN+88]_T.F. Lunt, D.E. Denning, P.G. Neumann, R.R. Schell, M. Heckman, and W.R. Shockley. Final report vol. 1: Security policy and policy interpretation for a class A1 multilevel secure relational database system. Technical report, Computer Science Laboratory, SRI International, Menlo Park, California, 1988.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1992 Springer-Verlag New York, Inc.
About this chapter
Cite this chapter
Gajnak, G.E. (1992). Some Results from the Entity/Relationship Multilevel Secure DBMS Project. In: Lunt, T.F. (eds) Research Directions in Database Security. Springer, New York, NY. https://doi.org/10.1007/978-1-4612-2870-7_16
Download citation
DOI: https://doi.org/10.1007/978-1-4612-2870-7_16
Publisher Name: Springer, New York, NY
Print ISBN: 978-0-387-97736-2
Online ISBN: 978-1-4612-2870-7
eBook Packages: Springer Book Archive