Partial security policies to support timeliness in secure real-time databases

Author

Son, Sang H. ; Chaney, Craig ; Thomlinson, Norris P.

Author_Institution

Dept. of Comput. Sci., Virginia Univ., Charlottesville, VA, USA

fYear

1998

fDate

3-6 May 1998

Firstpage

136

Lastpage

147

Abstract

Conflicts in database systems with both real-time and security requirements can be unresolvable. We address this issue by allowing a database system to provide partial security in order to improve real-time performance when necessary. Systems that are partially secure allow potential security violations such as covert channel use in certain situations. We present the idea of requirement specification that enables the system designer to specify important properties of the database at an appropriate level. To help the designer, a tool can process the database specification to find unresolvable conflicts, and to allow the designer to specify the rules to follow during execution when those conflicts arise. We discuss several partial security policies and compare their performance in terms of timeliness and potential security violations

Keywords

concurrency control; database management systems; formal specification; real-time systems; security of data; covert channel use; database properties specification; partial security policies; potential security violations; real-time performance improvement; requirement specification; secure real-time databases; system design; timeliness; unresolvable conflicts; Computer applications; Conferences; Data privacy; Data security; Information security; National security; Processor scheduling; Real time systems; Timing; Transaction databases;

fLanguage

English

Publisher

ieee

Conference_Titel

Security and Privacy, 1998. Proceedings. 1998 IEEE Symposium on

Conference_Location

Oakland, CA

ISSN

1081-6011

Print_ISBN

0-8186-8386-4

Type

conf

DOI

10.1109/SECPRI.1998.674830

Filename

674830