Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies

Abstract : Inference control of queries for relational databases confines the information content and thus the usability of data returned to a client, aiming to keep some pieces of information confidential as specified in a policy, in particular for the sake of privacy. In general, there is a tradeoff between the following factors: on the one hand, the expressiveness offered to administrators to declare a schema, a confidentiality policy and assumptions about a client’s a priori knowledge; on the other hand, the computational complexity of a provably confidentiality preserving enforcement mechanism. We propose and investigate a new balanced solution for a widely applicable situation: we admit relational schemas with functional and join dependencies, which are also treated as a priori knowledge, and select-project sentences for policies and queries; we design an efficient signature-based enforcement mechanism that we implement for an Oracle/SQL-system. At declaration time, the inference signatures are compiled from an analysis of all possible crucial inferences, and at run time they are employed like in the field of intrusion detection.
Type de document :
Communication dans un congrès
Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.56-73, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_5〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01534773
Contributeur : Hal Ifip <>
Soumis le : jeudi 8 juin 2017 - 11:06:38
Dernière modification le : jeudi 8 juin 2017 - 11:09:27
Document(s) archivé(s) le : samedi 9 septembre 2017 - 12:44:40

Fichier

978-3-642-31540-4_5_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Joachim Biskup, Sven Hartmann, Sebastian Link, Jan-Hendrik Lochner, Torsten Schlotmann. Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies. Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.56-73, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_5〉. 〈hal-01534773〉

Partager

Métriques

Consultations de la notice

126

Téléchargements de fichiers

13