A Multi-View Approach for Embedded Information System Security

Résumé

Confidentiality and consistency are two aspects of security for information systems, but mechanisms used to ensure them often support one at the expense of the other, in particular when data is not independent of the others. A new approach of access control for information systems consists in preserving several versions of the data and performing user’s actions on his own view. Doing so, the view behaves as expected with regard to invoked operations (confidentiality) while ensuring properties on data and relationships in the repository (consistency). The FLUOR project uses this model for its embedded information system.

Publication
In 5th International Conference on Risks and Security of Internet and Systems (CRiSIS’2010)
Date
Classement
ERA  C  
Pages
IEEE, pages 65-72
Lieu
Montréal, Québec, Canada, October 10-13, 2010

Mots clés

multi-view database, access control, confidentiality, consistency