Confidentiality policies for controlled query evaluation

Authors:
Joachim Biskup;Torben Weibert
Affiliations:
Fachbereich Informatik, Universität Dortmund, Dortmund, Germany;Fachbereich Informatik, Universität Dortmund, Dortmund, Germany
Venue:
Proceedings of the 21st annual IFIP WG 11.3 working conference on Data and applications security
Year:
2007

Citing 17
Cited 4

The SeaView Security Model

IEEE Transactions on Software Engineering
Database security

Database security
Formal query languages for secure relational databases

ACM Transactions on Database Systems (TODS)
Reasoning about knowledge

Reasoning about knowledge
Answering queries without revealing secrets

ACM Transactions on Database Systems (TODS)
For unknown secrecies refusal is better than lying

Data & Knowledge Engineering
Lying versus refusal for known potential secrets

Data Engineering
Principles of Data Security

Principles of Data Security
Foundations of Secure Deductive Databases

IEEE Transactions on Knowledge and Data Engineering
A Semantic Framework of the Multilevel Secure Relational Model

IEEE Transactions on Knowledge and Data Engineering
Secure Databases: Constraints, Inference Channels, and Monitoring Disclosures

IEEE Transactions on Knowledge and Data Engineering
Advances in Inference Control in Statistical Databases: An Overview

Inference Control in Statistical Databases, From Theory to Practice
The inference problem: a survey

ACM SIGKDD Explorations Newsletter
Dynamic inference control

DMKD '03 Proceedings of the 8th ACM SIGMOD workshop on Research issues in data mining and knowledge discovery
Controlled Query Evaluation for Known Policies by Combining Lying and Refusal

Annals of Mathematics and Artificial Intelligence
An introduction to trust negotiation

iTrust'03 Proceedings of the 1st international conference on Trust management
Controlled query evaluation with open queries for a decidable relational submodel

FoIKS'06 Proceedings of the 4th international conference on Foundations of Information and Knowledge Systems

Requirements and protocols for inference-proof interactions in information systems

ESORICS'09 Proceedings of the 14th European conference on Research in computer security
Usability confinement of server reactions: maintaining inference-proof client views by controlled interaction execution

DNIS'10 Proceedings of the 6th international conference on Databases in Networked Information Systems
Towards controlled query evaluation for incomplete first-order databases

FoIKS'10 Proceedings of the 6th international conference on Foundations of Information and Knowledge Systems
Inference-usability confinement by maintaining inference-proof views of an information system

International Journal of Computational Science and Engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

Controlled Query Evaluation (CQE) is an approach to enforcing confidentiality in information systems at runtime. At each query, a censor checks whether the answer to that query would enable the user to infer any information he is not allowed to know according to some specified confidentiality policy. If this is the case, the answer is distorted, either by refusing to answer or by returning a modified answer. In this paper, we consider incomplete logic databases and investigate the semantic ways of protecting a piece of information. We give a formal definition of such confidentiality policies, and show how to enforce them by reusing the existing methods for CQE.