Building a secure database using self-protecting objects
Loading...
Authors
Olivier, MS
Von Solms, SH
Issue Date
1991
Type
Language
en
Keywords
Security , Multilevel secure database , DBMS , Object-oriented , Path context model (PCM)
Alternative Title
Abstract
In current database systems the responsibility for enforcing security is often given to the various application programs. Even where the Database Management System (DBMS) does supply security mechanisms, a single application program often handles sensitive transactions for some users and therefore needs a high clearance for accessing data - this may render the provided mechanisms inadequate. Furthermore, the user's identity is often concealed because the user has many 'software agents' acting on its behalf - especially in distributed environments. A simple mapping between subjects and objects is no longer possible.
We propose a model for extending Object-Oriented Database Systems to enable objects themĀselves to ensure security - i.e. to protect themselves. This extension is based on the concept of 'baggage' - baggage is collected from all components involved in any request; this baggage may then be verified by the object against its personal security profile before any method is executed.
Description
Citation
Olivier, M.S. & Von Solms, S.H. (1991) Building a secure database using self-protecting objects. Proceedings of the 6th Southern African Computer Symposium, De Overberger Hotel, Caledon, 2-3 July 1991