Inference in Multilevel Secure Databases - PowerPoint PPT Presentation

1 / 7
About This Presentation
Title:

Inference in Multilevel Secure Databases

Description:

A single system combining data levels. Technological controls to control access ... Lunt, Teresa F. 'Aggregation and Inference: Facts and Fallacies. ... – PowerPoint PPT presentation

Number of Views:96
Avg rating:3.0/5.0
Slides: 8
Provided by: ryanwa3
Category:

less

Transcript and Presenter's Notes

Title: Inference in Multilevel Secure Databases


1
Inference in Multilevel Secure Databases
  • Ryan Wakeham

2
What is a Multilevel Secure DB?
  • Historical Context
  • DoD and Intel classification levels
  • Inefficient
  • Redundant databases
  • Redundant workstations
  • High cost
  • Solution the MLS Database
  • A single system combining data levels
  • Technological controls to control access

3
Woods Hole Architecture
  • Trusted base operating system
  • Separate instance of DBMS for each data level

4
Trusted Subjects Architecture
  • Trusted base operating system
  • Single DBMS can access all data
  • Trusted to only return authorized data

5
What is Inference in MLS Databases?
  • Occurs when a user is able to infer something
    about sensitive data through authorized queries
  • Various different manifestations of inference
  • Simple Example
  • Secret XYZ Labs is working on the X-100 missile
    project
  • Confidential Dr. Smith is attending a meeting
    about the X-100 development
  • Unclassified Dr. Smith works for XYZ Labs

6
Current Approaches to the Inference Problem
  • Increase level of data classification
  • Proper architecture
  • Polyinstantiation
  • Query-time inference control
  • Primary area of future work
  • More complex inference engines
  • Possibly coupled with AI techniques

7
References
  • Farkas, Csilla, and Sushil Jajodia. "The
    Inference Problem A Survey." ACM SIGKDD
    Explorations Newsletter 4 (2002) 6-11.
  • Hinke, Thomas H. "Inference Aggregation Detection
    in Database Management Systems." Proceedings of
    the 1988 IEEE Symposium on Security and Privacy
    (1988) 96-106.
  • Lunt, Teresa F. "Aggregation and Inference Facts
    and Fallacies." Proceedings of the 1989 IEEE
    Symposium on Security and Privacy (1989)
    102-109.
  • Null, Linda M., and Johnny Wong. "A Unified
    Approach for Multilevel Database Security Based
    on Inference Engines." Proceedings of the 20th
    SIGCSE Technical Symposium on Computer Science
    Education (1989) 108-111.
  • Rjaibi, Walid. "An Introduction to Multilevel
    Secure Relational Database Management Systems."
    Proceedings of the 2004 Conference of the Centre
    for Advanced Studies on Collaborative Research
    (2004).
  • Staddon, Jessica. "Dynamic Inference Control."
    Proceedings of the 8th ACM SIGMOD Workshop on
    Research Issues in Data Mining and Knowledge
    Discovery (2003) 94-100.
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Inference in Multilevel Secure Databases" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!