Title :
Secure databases: state of the art
Author :
Piattini, Mario G. ; Fernández-Medina, Eduardo
Author_Institution :
Escuela Superior de Inf., Univ. de Castilla-La Mancha, Spain
Abstract :
Most of the relational database management systems (RDBMS) used nowadays provide some limited security mechanisms, and facilities offer capabilities to define roles and establish audit trails. Users of RDBMSs are used to working with discretionary access control (DAC) policies. This kind of security is sufficient for a great majority of information systems, however an increasing number of organisations are requiring a securer control mechanism such as the mandatory access control (MAC) implemented in some DBMS products. We give an overview of the MAC database models proposed both in relational and in other kinds of DBMSs (e.g. object-oriented). We review the most common architectures followed in the construction of secure DBMSs and the methodologies that are being developed for designing this kind of database
Keywords :
authorisation; object-oriented databases; relational databases; software architecture; auditing; database security; discretionary access control; information systems; mandatory access control; object-oriented database; organisations; relational database; software architectures; Access control; Control systems; Data security; ISO standards; Information management; Information security; Information systems; Management information systems; Protection; Relational databases;
Conference_Titel :
Security Technology, 2000. Proceedings. IEEE 34th Annual 2000 International Carnahan Conference on
Conference_Location :
Ottawa, Ont.
Print_ISBN :
0-7803-5965-8
DOI :
10.1109/CCST.2000.891192
