| Bibtype | Inproceedings |
|---|---|
| Bibkey | Biskup/Hartmann/2012a |
| Author | Biskup, Joachim and Hartmann, Sven and Link, Sebastian and Lochner, Jan-Hendrik and Schlotmann, Torsten |
| Editor | Nora Cuppens-Boulahia and Fr{\'e}d{\'e}ric Cuppens and Joaqu\'{\i}n Garc\'{\i}a-Alfaro |
| Title | Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies |
| Booktitle | Data and Applications Security and Privacy XXVI - 26th Annual IFIP WG 11.3 Conference |
| Series | Lecture Notes in Computer Science |
| Volume | 7371 |
| Pages | 56-73 |
| Organization | IFIP WG 11.3 |
| Publisher | Springer |
| Abstract | Inference control of queries for relational databases confines
the information content and thus the usability of data returned to a client, aiming to keep some pieces of information confidential as specified in a policy, in particular for the sake of privacy. In general, there is a tradeoff between the following factors: on the one hand, the expressiveness offered to administrators to declare a schema, a confidentiality policy and assumptions about a client’s a priori knowledge; on the other hand, the computational complexity of a provably confidentiality preserving enforcement mechanism. We propose and investigate a new balanced solution for a widely applicable situation: we admit relational schemas with functional and join dependencies, which are also treated as a priori knowledge, and select-project sentences for policies and queries; we design an efficient signature-based enforcement mechanism that we implement for an Oracle/SQL-system. At declaration time, the inference signatures are compiled from an analysis of all possible crucial inferences, and at run time they are employed like in the field of intrusion detection. |
| Year | 2012 |
| Projekt | SFB876-A5 |
| Bibtex | Here you can get this literature entry as BibTeX format. |
|---|