An Approach for Building Secure Database Federations.

Dirk Jonscher, Klaus R. Dittrich: An Approach for Building Secure Database Federations. VLDB 1994: 24-35

@inproceedings{DBLP:conf/vldb/JonscherD94,
  author    = {Dirk Jonscher and
               Klaus R. Dittrich},
  editor    = {Jorge B. Bocca and
               Matthias Jarke and
               Carlo Zaniolo},
  title     = {An Approach for Building Secure Database Federations},
  booktitle = {VLDB'94, Proceedings of 20th International Conference on Very
               Large Data Bases, September 12-15, 1994, Santiago de Chile, Chile},
  publisher = {Morgan Kaufmann},
  year      = {1994},
  isbn      = {1-55860-153-8},
  pages     = {24-35},
  ee        = {db/conf/vldb/vldb94-24.html},
  crossref  = {DBLP:conf/vldb/94},
  bibsource = {DBLP, http://dblp.uni-trier.de}
}

Abstract

Database federations give rise to particular security problems which are not present in classical database environments. The problems and solutions heavily depend on the federation's architecture and the degree of heterogeneity of participating component systems. In this paper we discuss a special aspect of security, namely access control for tightly coupled federations. We determine the typical problems to be solved and discuss several solutions providing for different degrees of local autonomy, especially authorisation autonomy. In particular, we describe the interaction between independent reference monitors. Further, we sketch powerful access control mechanisms to be applied at the global layer and show how they can be mapped onto less powerful mechanisms of component database management systems.

Copyright © 1994 by the VLDB Endowment. Permission to copy without fee all or part of this material is granted provided that the copies are not made or distributed for direct commercial advantage, the VLDB copyright notice and the title of the publication and its date appear, and notice is given that copying is by the permission of the Very Large Data Base Endowment. To copy otherwise, or to republish, requires a fee and/or special permission from the Endowment.

Online Paper

Download PDF file (www.vldb.org, Darmstadt, Germany)
Download PDF file (www.acm.org, New York, USA)

ACM SIGMOD Anthology

CDROM Version: Load the CDROM "Volume 1 Issue 5, VLDB '89-'97" and ...

Windows: Click the letter of your CD drive
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Mac: Click here
UNIX/LINUX: mount the CD and click on the path of your mount point:
/Anthology/vldb8997 or /cdrom

DVD Version: Load ACM SIGMOD Anthology DVD 1" and ...

Windows: Click the letter of your CD drive
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Mac: Click here
UNIX/LINUX: mount the DVD and click on the path of your mount point:
/Anthology/aDVD1 or /dvd

Printed Edition

Jorge B. Bocca, Matthias Jarke, Carlo Zaniolo (Eds.): VLDB'94, Proceedings of 20th International Conference on Very Large Data Bases, September 12-15, 1994, Santiago de Chile, Chile. Morgan Kaufmann 1994, ISBN 1-55860-153-8
Contents

References

[Ande72]: ...
[Atki89]: Malcolm P. Atkinson, François Bancilhon, David J. DeWitt, Klaus R. Dittrich, David Maier, Stanley B. Zdonik: The Object-Oriented Database System Manifesto. DOOD 1989: 223-240
[BeLa75]: ...
[Bert92]: Elisa Bertino: Data Hiding and Security in Object-Oriented Databases. ICDE 1992: 338-347
[ClWi87]: ...
[Denn82]: ...
[DoD85]: ...
[Fagi78]: Ronald Fagin: On an Authorization Mechanism. ACM Trans. Database Syst. 3(3): 310-319(1978)
[FeSW81]: ...
[GrWa76]: Patricia P. Griffiths, Bradford W. Wade: An Authorization Mechanism for a Relational Database System. ACM Trans. Database Syst. 1(3): 242-255(1976)
[HäDi92]: Martin Härtig, Klaus R. Dittrich: An Object-Oriented Integration Framework for Building Heterogeneous Database Systems. DS-5 1992: 33-53
[IdQG93]: Norbik Bashah Idris, W. A. Gray, M. A. Qutaishat: Integration of Secrecy Features in a Federated Database Environment. DBSec 1993: 89-108
[JoDi93a]: ...
[JoDi93b]: ...
[JoMD93]: Dirk Jonscher, Jonathan D. Moffett, Klaus R. Dittrich: Complex Subjects, or: The Striving for Complexity is Ruling our World. DBSec 1993: 19-37
[Kent93]: William Kent: Object-Orientation and Interoperability. NATO ASI OODBS 1993: 287-305
[LuQP91]: ...
[Melt93]: ...
[MLTS92]: Matthew Morgenstern, Teresa F. Lunt, Bhavani M. Thuraisingham, David L. Spooner: Security Issues in Federated Database Systems: Panel Contributions. DBSec 1991: 131-148
[NiWM93]: John R. Nicol, C. Thomas Wilkes, Frank Manola: Object Orientation in Heterogeneous Distributed Computing Systems. IEEE Computer 26(6): 57-67(1993)
[NKDJ93]: ...
[Pern92]: Günther Pernul: Canonical Security Modeling for Federated Databases. DS-5 1992: 207-222
[RaWK88]: Fausto Rabitti, Darrell Woelk, Won Kim: A Model of Authorization for Object-Oriented and Semantic Databases. EDBT 1988: 231-250
[RBKW91]: Fausto Rabitti, Elisa Bertino, Won Kim, Darrell Woelk: A Model of Authorization for Next-Generation Database Systems. ACM Trans. Database Syst. 16(1): 88-131(1991)
[SaCG91]: Fèlix Saltor, Malú Castellanos, Manuel García-Solaco: Suitability of Data Models as Canonical Models for Federated Databases. SIGMOD Record 20(4): 44-48(1991)
[ShLa90]: Amit P. Sheth, James A. Larson: Federated Database Systems for Managing Distributed, Heterogeneous, and Autonomous Databases. ACM Comput. Surv. 22(3): 183-236(1990)
[Ston75]: Michael Stonebraker: Implementation of Integrity Constraints and Views by Query Modification. SIGMOD Conference 1975: 65-78
[StRu76]: ...
[StWo74]: ...
[TeLW87]: Marjorie Templeton, Eric Lund, Pat Ward: Pragmatics of Access Control in Mermaid. IEEE Data Eng. Bull. 10(3): 33-38(1987)
[WaSp87]: ...