First European Symposium On Research In Computer Security (ESORICS 90)
A General Framework for Database Security
Joachim Biskup
Keywords : database security, communication, channel, military (multilevel) database security policy, commercial database security policy, personal knowledge, secrets, properties, informational self-determination
Abstract : Databases are interpreted as a channel for communicative actors. Then a database security policy aims at establishing subchannels between specific (groups of) users such that certain facilities of the subchannels, e.g. integrity and completion of transactions, are guaranteed while the subchannels remain suitably separated. The military (multilevel), commercial, and personal knowledge approach are assessed with respect to this view of database security. Their differences partly originate from emphasizing various values: secrets, properties and informational self-determination, respectively.
(Pages 35-41)