Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies

Joachim Biskup 1 Sven Hartmann 2 Sebastian Link 3 Jan-Hendrik Lochner 1 Torsten Schlotmann 1
1 Fakultät für Informatik
2 Institut für Informatik [Clausthal]
3 Department of Computer Science, The University of Auckland
Abstract : Inference control of queries for relational databases confines the information content and thus the usability of data returned to a client, aiming to keep some pieces of information confidential as specified in a policy, in particular for the sake of privacy. In general, there is a tradeoff between the following factors: on the one hand, the expressiveness offered to administrators to declare a schema, a confidentiality policy and assumptions about a client’s a priori knowledge; on the other hand, the computational complexity of a provably confidentiality preserving enforcement mechanism. We propose and investigate a new balanced solution for a widely applicable situation: we admit relational schemas with functional and join dependencies, which are also treated as a priori knowledge, and select-project sentences for policies and queries; we design an efficient signature-based enforcement mechanism that we implement for an Oracle/SQL-system. At declaration time, the inference signatures are compiled from an analysis of all possible crucial inferences, and at run time they are employed like in the field of intrusion detection.
Keywords : a priori knowledge confidentiality policy functional dependency inference control inference-usability confinement interaction history join dependency refusal relational database select-project query inference signature SQL template dependency
Type de document :
Communication dans un congrès
Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.56-73, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_5〉
Liste complète des métadonnées
https://hal.inria.fr/hal-01534773
Contributeur : Hal Ifip <>
Soumis le : jeudi 8 juin 2017 - 11:06:38
Dernière modification le : jeudi 8 juin 2017 - 11:09:27
Document(s) archivé(s) le : samedi 9 septembre 2017 - 12:44:40

Fichier

978-3-642-31540-4_5_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence

Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Collections

IFIP-LNCS | IFIP | IFIP-TC | IFIP-WG | IFIP-TC11 | IFIP-WG11-3 | IFIP-DBSEC | IFIP-LNCS-7371

Citation

Joachim Biskup, Sven Hartmann, Sebastian Link, Jan-Hendrik Lochner, Torsten Schlotmann. Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies. Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro. 26th Conference on Data and Applications Security and Privacy (DBSec), Jul 2012, Paris, France. Springer, Lecture Notes in Computer Science, LNCS-7371, pp.56-73, 2012, Data and Applications Security and Privacy XXVI. 〈10.1007/978-3-642-31540-4_5〉. 〈hal-01534773〉

Exporter

BibTeX TEI DC DCterms EndNote

Partager

Métriques

Consultations de la notice

174

Téléchargements de fichiers

14

Contact


archive-ouverte@inria.fr