A Multi-View Approach for Embedded Information System Security

Abstract

Confidentiality and consistency are two aspects of security for information systems, but mechanisms used to ensure them often support one at the expense of the other, in particular when data is not independent of the others. A new approach of access control for information systems consists in preserving several versions of the data and performing user’s actions on his own view. Doing so, the view behaves as expected with regard to invoked operations (confidentiality) while ensuring properties on data and relationships in the repository (consistency). The FLUOR project uses this model for its embedded information system.

Publication
In 5th International Conference on Risks and Security of Internet and Systems (CRiSIS'2010)
Ranking
ERA  C  
Pages
IEEE, pages 65-72
Location
Montréal, Québec, Canada, October 10-13, 2010

Keywords

multi-view database, access control, confidentiality, consistency

Manuel Munier
Manuel Munier
Associate Professor in Computer Science

My research interests include information security, risk management, and privacy.

Related