Integrating Multilevel Security Policies in Multilevel Federated Database Systems

  • Marta Oliva
  • Fèlix Saltor
Part of the IFIP International Federation for Information Processing book series (IFIPAICT, volume 73)


This paper describes a multilevel security policies integration methodology to endow tightly coupled federated database systems with a multilevel security system. The proposal is based on a schema integration process. It obtains, in a semi-automatic form, the ordered set of classification levels for the multilevel security system of the federation, and the translation functions between each ordered set belonging to each component database and the federated ordered set as well. The proposed methodology also includes a way to solve the problem of classification of the components of the Federated Schema generated during the integration process.

Key words

Multilevel security integration interoperation federated DBMS 


  1. [BSS96]
    P.A. Bonatti, M.L. Sapino and V.S. Subrahmanian. Merging Heterogeneous Security Orderings. In E. Bertino, G. Kurth, H. Martella and E. Montolivo, editors, Computer Security — ESORICS 96 (4th European Symposium on Research in Computer Security, Rome, Italy, September 25–27, 1996, Proceedings), volume 1146 of LNCS, pages 183–197, Springer-Verlag, 1996.Google Scholar
  2. [BL75]
    D.E. Bell and L.J. LaPadula. Secure computer systems: Unified exposition and multics interpretation. Technical Report MTR-2997, (AY/W 020 445), The MITRE Corporation, Bedford, MA, Jul 1975.Google Scholar
  3. [CSGS94]
    M. Castellanos, F. Saltor and M. García-Solaco: A Canonical Data Model for the Interoperability among Object-Oriented and Relational Databases. In Özsu, Dayal and Valduriez (eds), Distributed Object Management, pages 309–314, Morgan Kaufmann,1994.Google Scholar
  4. [DJ94]
    K.R. Dittrich and D. Jonscher. Current Trends in Database Technology and Their Impact on Security Concepts. In J. Biskup, M. Mongersten and C.E. Landwehr (eds), Database Security VIII (A-60),. Elsevier Science B.V. (North Holland) IFIP, pages 11–33, 1994.Google Scholar
  5. [GQ96]
    L. Gong and X. Qian. Computational Issues in Secure Interoperation. IEEE Transactions on Software Engineering, 22(1):43–51, January 1996.Google Scholar
  6. [GSSC95]
    M. García-Solaco, F. Saltor and M. Castellanos. A Structure Based Schema Integration Methodology. In Proc. 11th Int. Conference on Data Engineering, Taipei. IEEE-CS Press, 1995.Google Scholar
  7. [IGQ94]
    N.B. Idris, W.A. Gray and M.A. Qutaishat. Integration of Secrecy Features in a Federated Database Environment. In T.F. Keefe and C.E. Landwehr, editors, Database Security VII (A-47), pages 89–109. Elsevier Science B.V. (North-Holland) IFIP, 1994.Google Scholar
  8. [ML92]
    J.K. Millen and T.F. Lunt. Security for Object-Oriented Database Systems. In Proceedings of the IEEE Computer Society Symposium on Research in Security and Privacy, Oakland, California, pages 260–272, May, 1992.Google Scholar
  9. [MLTS92]
    M. Morgenstern, T. Lunt, B. Thuraisingham and D. Spooner. Security issues in federated database systems: panel contributions. In C.E. Landwehr and S. Jajodia, editors, Database Security V (A-6): Status and Prospects, pages 131–148. Elsevier Science B.V. (North Holland) IFIP, 1992.Google Scholar
  10. [OS00]
    M. Oliva & F. Saltor. Integrating Multilevel Security Policies in Multilevel Federated Database Systems. In Proc. 14th Annual IFIP WG 11.3 Working Conference on Database Security, Schoorl, The Netherlands, August 21–23, 2000.Google Scholar
  11. [Per93]
    G. Pernul. Canonical Security Modeling for Federated Databases. In D.K. Hsiao, E.J. Neuhold, and R. Sacks-Davis, editors, Interoperable Database Systems (DS-5) (A-25), pages 207–222. Elsevier Science Publishers B.V. (North-holland) IFIP, 1993Google Scholar
  12. [ROSC97]
    M.E. Rodríguez, M. Oliva, F. Saltor and B. Campderrich. On Schema and Functional Architectures for Multilevel Secure and Multiuser Model Federated DB Systems. In S. Conrad, W. Hasselbring, A. Heuer, G. Saake, editors, Proceedings of the International CAiSE’97 Workshop on Engineering Federated Database Systems (EFDBS’97, Barcelona), Otto-von-Guericke-Universität Magdeburg, Fakultät für Informatik, preprint Nr. 6, pages 93–104, 1997.Google Scholar
  13. [SL90]
    A.P. Sheth and J.A. Larson. Federated Database Systems for Managing Distributed, Heterogeneous, and Autonomous Databases. ACM Computing Surveys, 22(3): 183–236, September 1990.CrossRefGoogle Scholar
  14. [SM77]
    D.F. Stanat and D.F. McAllister. Discrete Mathematics in Computer Science. Prentice-Hall International Editions, 1977.Google Scholar

Copyright information

© Kluwer Academic Publishers 2002

Authors and Affiliations

  • Marta Oliva
    • 1
  • Fèlix Saltor
    • 2
  1. 1.Dept. Informàtica i Enginyeria IndustrialUniversitat de LleidaLleidaCatalonia
  2. 2.Dept. Llenguatges i Sistemes InformaticsUniversitat Politècnica de CatalunyaBarcelonaCatalonia

Personalised recommendations