SODA: A secure object-oriented database system

Keefe, T.F.; Tsai, Wei Tek; Thuraisingham, Meena

doi:10.1016/0167-4048(89)90081-3

Cited by 36 publications

(13 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The resulting model was called SORION [Thuraisingham, 1989]. The resulting model was called SORION [Thuraisingham, 1989].…”

Section: Mandatory Access Control For Object Dmssmentioning

confidence: 99%

Access Control in Data Management Systems

Ferrari¹

2010

Synthesis Lectures on Data Management

View full text Add to dashboard Cite

Synthesis Lectures on Data Management is edited by Tamer Özsu of the University of Waterloo.The series will publish 50-to 125 page publications on topics pertaining to data management. The scope will largely follow the purview of premier information and computer science conferences, such as ACM SIGMOD, VLDB, ICDE, PODS, ICDT, and ACM KDD. Potential topics include, but not are limited to: query languages, database system architectures, transaction management, ABSTRACT Access control is one of the fundamental services that any Data Management System should provide. Its main goal is to protect data from unauthorized read and write operations. This is particularly crucial in today's open and interconnected world, where each kind of information can be easily made available to a huge user population, and where a damage or misuse of data may have unpredictable consequences that go beyond the boundaries where data reside or have been generated.This book provides an overview of the various developments in access control for data management systems. Discretionary, mandatory, and role-based access control will be discussed, by surveying the most relevant proposals and analyzing the benefits and drawbacks of each paradigm in view of the requirements of different application domains. Access control mechanisms provided by commercial Data Management Systems are presented and discussed. Finally, the last part of the book is devoted to discussion of some of the most challenging and innovative research trends in the area of access control, such as those related to the Web 2.0 revolution or to the Database as a Service paradigm.This book is a valuable reference for an heterogeneous audience. It can be used as either an extended survey for people who are interested in access control or as a reference book for senior undergraduate or graduate courses in data security with a special focus on access control. It is also useful for technologists, researchers, managers, and developers who want to know more about access control and related emerging trends.

show abstract

“…The resulting model was called SORION [Thuraisingham, 1989]. The resulting model was called SORION [Thuraisingham, 1989].…”

Section: Mandatory Access Control For Object Dmssmentioning

confidence: 99%

Access Control in Data Management Systems

Ferrari¹

2010

Synthesis Lectures on Data Management

View full text Add to dashboard Cite

show abstract

“…It may very well be the caae that an instance of LIST is classified, while an instance of ORDERED-LIST may not have to be. Past research emphasizes the notion of a class inheriting its security label from its superclass [3,4,8].…”

Section: Securitymentioning

confidence: 99%

The DIAMOND security policy for object-oriented databases

Null¹,

Wong²

1992

Proceedings of the 1992 ACM Annual Conference on Communications - CSC '92

View full text Add to dashboard Cite

show abstract

“…Hybrid policies have also been proposed, where a content-based policy is essentially used, but where the labels that may be associated with data in a given container is restricted to be within some predetermined range [8].…”

Section: Dimension 2: Flow Controlmentioning

confidence: 99%

“…A typical container-based flow control policy, but with content-based activation records (similar to that used by SODA [8] and many others) may be implemented as described in figure 4. Note that All is assumed to be a subject label associated with all subjects.…”

Section: Dimension 2: Flow Controlmentioning

confidence: 99%

Towards a configurable security architecture

Olivier¹

2001

Data & Knowledge Engineering

View full text Add to dashboard Cite

Current security systems are either an integral part of the system they are protecting or a separate module external to the system. This paper describes an architecture for a security system that allows security components to be developed separately from the system they have to protect and then integrated into the system at a later stage. This means an organisation may select the required components based on its needs and 'plug' these components into their systems.The paper describes the proposed architecture and demonstrates how it may be used to support various forms of discretionary and mandatory authorisation.

show abstract

SODA: A secure object-oriented database system

Cited by 36 publications

References 10 publications

Access Control in Data Management Systems

Access Control in Data Management Systems

The DIAMOND security policy for object-oriented databases

Towards a configurable security architecture

Contact Info

Product

Resources

About