A logical analysis of modules in logic programming
Journal of Logic Programming
IEEE Transactions on Software Engineering
Toward a multilevel secure relational data model
SIGMOD '91 Proceedings of the 1991 ACM SIGMOD international conference on Management of data
Formal query languages for secure relational databases
ACM Transactions on Database Systems (TODS)
Logical foundations of object-oriented and frame-based languages
Journal of the ACM (JACM)
A unified framework for enforcing multiple access control policies
SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
Asserting beliefs in MLS relational models
ACM SIGMOD Record
IEEE Transactions on Knowledge and Data Engineering
Foundations of Secure Deductive Databases
IEEE Transactions on Knowledge and Data Engineering
ICDE '96 Proceedings of the Twelfth International Conference on Data Engineering
A Stable Model Semantics for Behavioral Inheritance in Deductive Object Oriented Languages
ICDT '95 Proceedings of the 5th International Conference on Database Theory
Entity Modeling in the MLS Relational Model
VLDB '92 Proceedings of the 18th International Conference on Very Large Data Bases
Querying a Multilevel Database: A Logical Analysis
VLDB '96 Proceedings of the 22th International Conference on Very Large Data Bases
Implementing Abstract Objects with Inheritance in Datalogneg
VLDB '97 Proceedings of the 23rd International Conference on Very Large Data Bases
A Logic for Encapsulation in Object Oriented Languages
PLILP '94 Proceedings of the 6th International Symposium on Programming Language Implementation and Logic Programming
The Entity-Relationship Model for Multilevel Security
ER '93 Proceedings of the 12th International Conference on the Entity-Relationship Approach: Entity-Relationship Approach
A Logical Language for Expressing Authorizations
SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Protecting deductive databases from unauthorized retrieval and update requests
Data & Knowledge Engineering - Data and applications security
A Model Theoretic Semantics for Multi-level Secure Deductive Databases
ICLP '02 Proceedings of the 18th International Conference on Logic Programming
Access Control for Deductive Databases by Logic Programming
ICLP '02 Proceedings of the 18th International Conference on Logic Programming
PADL '01 Proceedings of the Third International Symposium on Practical Aspects of Declarative Languages
Closing the key loophole in MLS databases
ACM SIGMOD Record
On logical foundations of multilevel secure databases
Journal of Intelligent Information Systems - Special issue: Database and applications security
| Hi-index | 0.00 |
It is envisaged that the application of the multilevel security (MLS) scheme will enhance flexibility and effectiveness of authorization policies in shared enterprise databases and will replace cumbersome authorization enforcement practices through complicated view definitions on a per user basis. However, as advances in this area are being made and ideas crystallized, the concomitant weaknesses of the MLS databases are also surfacing. We insist that the critical problem with the current model is that the belief at a higher security level is cluttered with irrelevant or inconsistent data as no mechanism for attenuation is supported. Critics also argue that it is imperative for MLS database users to theorize about the belief of others, perhaps at different security levels, an apparatus that is currently missing and the absence of which is seriously felt.The impetus for our current research is this need to provide an adequate framework for belief reasoning in MLS databases. We demonstrate that a prudent application of the concept of inheritance in a deductive database setting will help capture the notion of declarative belief and belief reasoning in MLS databases in an elegant way. To this end, we develop a function to compute belief in multiple modes which can be used to reason about the beliefs of other users. We strive to develop a poised and practical logical characterization of MLS databases for the first time based on the inherently difficult concept of non-monotonic inheritance. We present an extension of the acclaimed Datalog language, called the MultiLog, and show that Datalog is a special case of our language. We also suggest an implementation scheme for MultiLog as a front-end for CORAL.