A model for specifying multi-granularity integrity policies

Author

Badger, Lee

Author_Institution

Unisys Defense Syst., McLean, VA, USA

fYear

1989

fDate

1-3 May 1989

Firstpage

269

Lastpage

277

Abstract

Systems which provide integrity controls are presented in terms of a request-response paradigm. This paradigm involves modeling the manner in which valid requests are made, a system´s method of deciding whether or not to service a request, and the manner in which a system state are performed only in authorized ways. A novel feature of the model is that integrity policies, which are restrictions on how data may be modified, are defined at multiple levels of granularity. At the finest and lowest level of granularity, restrictions are placed directly on how data items may be modified; at successive and more coarse levels of granularity, restrictions are defined in terms provided by lower levels. A hierarchical technique for organizing computations, nested transactions, is adapted for this purpose. Integrity policies expressed in this framework are properties of computations which can be specified and related to other desirable properties, such as concurrent execution and fault tolerance

Keywords

data integrity; formal specification; security of data; concurrent execution; data items; fault tolerance; hierarchical technique; integrity controls; multi-granularity integrity policies; nested transactions; request-response paradigm; Character recognition; Computational modeling; Concurrent computing; Contracts; Control systems; Database systems; Fault tolerance; Operating systems; Organizing; Solid modeling;

fLanguage

English

Publisher

ieee

Conference_Titel

Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on

Conference_Location

Oakland, CA

Print_ISBN

0-8186-1939-2

Type

conf

DOI

10.1109/SECPRI.1989.36301

Filename

36301