Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies

Abstract : Inference control of queries for relational databases confines the information content and thus the usability of data returned to a client, aiming to keep some pieces of information confidential as specified in a policy, in particular for the sake of privacy. In general, there is a tradeoff between the following factors: on the one hand, the expressiveness offered to administrators to declare a schema, a confidentiality policy and assumptions about a client’s a priori knowledge; on the other hand, the computational complexity of a provably confidentiality preserving enforcement mechanism. We propose and investigate a new balanced solution for a widely applicable situation: we admit relational schemas with functional and join dependencies, which are also treated as a priori knowledge, and select-project sentences for policies and queries; we design an efficient signature-based enforcement mechanism that we implement for an Oracle/SQL-system. At declaration time, the inference signatures are compiled from an analysis of all possible crucial inferences, and at run time they are employed like in the field of intrusion detection.
Document type :
Conference papers
Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.56-73, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_5〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01534773
Contributor : Hal Ifip <>
Submitted on : Thursday, June 8, 2017 - 11:06:38 AM
Last modification on : Thursday, June 8, 2017 - 11:09:27 AM
Document(s) archivé(s) le : Saturday, September 9, 2017 - 12:44:40 PM

File

978-3-642-31540-4_5_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Joachim Biskup, Sven Hartmann, Sebastian Link, Jan-Hendrik Lochner, Torsten Schlotmann. Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies. Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.56-73, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_5〉. 〈hal-01534773〉

Share

Metrics

Record views

173

Files downloads

14