Preprocessing for controlled query evaluation with availability policy

Authors:
Joachim Biskup;Lena Wiese
Affiliations:
Universität Dortmund, 44221 Dortmund, Germany. Tel.: +49-231-755-4813, Fax: +49-231-755-2405, http://ls6-www.cs.uni-dortmund.de/issi/. E-mail: biskup@ls6.cs.uni-dortmund.de;(Correspd. partially funded by a Res. Training Grp. of the DFG) Universität Dortmund, 44221 Dortmund, Germany. Tel.: +49-231-755-4813, Fax: +49-231-755-2405, http://ls6-www.cs.uni-dortmund.de ...
Venue:
Journal of Computer Security - 20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec'06)
Year:
2008

Citing 19
Cited 8

Analyzing FD inference in relational databases

Data & Knowledge Engineering
A Computing Procedure for Quantification Theory

Journal of the ACM (JACM)
A machine program for theorem-proving

Communications of the ACM
Lying versus refusal for known potential secrets

Data Engineering
Combining strengths of circuit-based and CNF-based algorithms for a high-performance SAT solver

Proceedings of the 39th annual Design Automation Conference
Advances in Inference Control in Statistical Databases: An Overview

Inference Control in Statistical Databases, From Theory to Practice
The Quest for Efficient Boolean Satisfiability Solvers

CADE-18 Proceedings of the 18th International Conference on Automated Deduction
The inference problem: a survey

ACM SIGKDD Explorations Newsletter
Controlled Query Evaluation for Known Policies by Combining Lying and Refusal

Annals of Mathematics and Artificial Intelligence
Controlled query evaluation with open queries for a decidable relational submodel

Annals of Mathematics and Artificial Intelligence
Secure XML publishing without information leakage in the presence of data inference

VLDB '04 Proceedings of the Thirtieth international conference on Very large data bases - Volume 30
A logical approach to efficient Max-SAT solving

Artificial Intelligence
Keeping secrets in incomplete databases

International Journal of Information Security
MINIMAXSAT: an efficient weighted max-SAT solver

Journal of Artificial Intelligence Research
Inference control in logic databases as a constraint satisfaction problem

ICISS'07 Proceedings of the 3rd international conference on Information systems security
On finding an inference-proof complete database for controlled query evaluation

DBSEC'06 Proceedings of the 20th IFIP WG 11.3 working conference on Data and Applications Security
NiVER: non-increasing variable elimination resolution for preprocessing SAT instances

SAT'04 Proceedings of the 7th international conference on Theory and Applications of Satisfiability Testing
Effective preprocessing in SAT through variable and clause elimination

SAT'05 Proceedings of the 8th international conference on Theory and Applications of Satisfiability Testing
On subsumption removal and on-the-fly CNF simplification

SAT'05 Proceedings of the 8th international conference on Theory and Applications of Satisfiability Testing

Combining Consistency and Confidentiality Requirements in First-Order Databases

ISC '09 Proceedings of the 12th International Conference on Information Security
A sound and complete model-generation procedure for consistent and confidentiality-preserving databases

Theoretical Computer Science
Usability confinement of server reactions: maintaining inference-proof client views by controlled interaction execution

DNIS'10 Proceedings of the 6th international conference on Databases in Networked Information Systems
Using SAT-Solvers to compute inference-proof database instances

DPM'09/SETOP'09 Proceedings of the 4th international workshop, and Second international conference on Data Privacy Management and Autonomous Spontaneous Security
Towards controlled query evaluation for incomplete first-order databases

FoIKS'10 Proceedings of the 6th international conference on Foundations of Information and Knowledge Systems
Inference-usability confinement by maintaining inference-proof views of an information system

International Journal of Computational Science and Engineering
Inference-Proof view update transactions with minimal refusals

DPM'11 Proceedings of the 6th international conference, and 4th international conference on Data Privacy Management and Autonomous Spontaneus Security
Dynamic policy adaptation for inference control of queries to a propositional information system

Journal of Computer Security - DBSec 2011

Quantified Score

Hi-index	0.00

Visualization

Abstract

Controlled Query Evaluation (CQE) defines a logical framework to protect confidential information in a database. By modeling a user's a priori knowledge appropriately, a CQE system not only controls access to certain database entries but also accounts for information inferred by the user. In this article, we present a static (preprocessing) CQE-approach for propositional databases with an availability policy. The resulting inference-proof and availability-preserving database ensures confidentiality of secret information while guaranteeing availability of certain database entries to a highest degree possible. We illustrate the semantics of the system by a comprehensive example and state the essential requirements for an inference-proof and availability-preserving database. We present an algorithm that accomplishes the preprocessing by combining SAT solving and “Branch and Bound”.