Confidentiality and consistency are two aspects of security for information systems, but mechanisms used to ensure them often support one at the expense of the other, in particular when data is not independent of the others. A new approach of access control for information systems consists in preserving several versions of the data and performing user’s actions on his own view. Doing so, the view behaves as expected with regard to invoked operations (confidentiality) while ensuring properties on data and relationships in the repository (consistency). The FLUOR project uses this model for its embedded information system.
multi-view database, access control, confidentiality, consistency