Title :
An audit model for object-oriented databases
Author :
Kogan, Boris ; Jajodia, Sushil
Author_Institution :
Dept. of Inf. & Software Syst. Eng., George Mason Univ., Fairfax, VA, USA
Abstract :
Auditing capability is one of the requirements for secure databases. A secure database management system, among other things, has to provide not only facilities for recording the history of all updates and queries against the database but high-level support for querying this history as well. The authors present an audit model for object-oriented databases that satisfies both requirements. The model offers several additional advantages: (1) it imposes a uniform logical structure upon both the current and the audit data: (2) it results in zero-information loss, i.e. there is never any loss of historical or current information in this model; and (3) since it captures the entire database activity, a complete reconstruction of every action taken on the database is possible. They show how this third aspect can be exploited to provide high-level support for expressing audit and other database queries and therefore, they make a complete audit trail methodology available
Keywords :
auditing; object-oriented databases; security of data; audit model; database queries; object-oriented databases; secure databases; uniform logical structure; zero-information loss; Data engineering; Database languages; History; Information retrieval; Intrusion detection; Object oriented databases; Object oriented modeling; Software systems; Systems engineering and theory; Transaction databases;
Conference_Titel :
Computer Security Applications Conference, 1991. Proceedings., Seventh Annual
Conference_Location :
San Antonio, TX
Print_ISBN :
0-8186-2280-6
DOI :
10.1109/CSAC.1991.213015
