A Multi-View Approach for Embedded Information System Security

Manuel Munier
octobre 2010
PDF Diapositives DOI DBLP IEEE HAL BibTex XML

Résumé

Confidentiality and consistency are two aspects of security for information systems, but mechanisms used to ensure them often support one at the expense of the other, in particular when data is not independent of the others. A new approach of access control for information systems consists in preserving several versions of the data and performing user’s actions on his own view. Doing so, the view behaves as expected with regard to invoked operations (confidentiality) while ensuring properties on data and relationships in the repository (consistency). The FLUOR project uses this model for its embedded information system.

Type
Article de conférence
Publication
In 5th International Conference on Risks and Security of Internet and Systems (CRiSIS'2010)
Classement
ERA  C  
Pages
IEEE, pages 65-72
Lieu
Montréal, Québec, Canada, October 10-13, 2010

Mots clés

multi-view database, access control, confidentiality, consistency

information security usage control
Manuel Munier
Manuel Munier
Maître de Conférences HC en Informatique

Mes activités de recherche concernent la sécurité de l’information, la gestion des risques et le droit & numérique.

Sur le même sujet