A protection model for distributed data base management systems
| dc.contributor.author | Laribi, Atika | en |
| dc.contributor.committeechair | Kafura, Dennis G. | en |
| dc.contributor.committeemember | Hartson, H. Rex | en |
| dc.contributor.committeemember | Fox, Edward A. | en |
| dc.contributor.committeemember | Hacks, James O. | en |
| dc.contributor.committeemember | Armstrong, James R. | en |
| dc.contributor.department | Computer Science | en |
| dc.date.accessioned | 2015-06-29T22:07:02Z | en |
| dc.date.available | 2015-06-29T22:07:02Z | en |
| dc.date.issued | 1985 | en |
| dc.description.abstract | Security is important for Centralized Data Base Management Systems (CDBMS) and becomes crucial for Distributed Data Base Management Systems (DDBMS) when different organizations share information. Secure cooperation can be achieved only if each participating organization is assured that the data it makes available will not be abused by other users. In this work differences between CDBMS and DDBMS that characterize the nature of the protection problem in DDBMS are identified. These differences are translated into basic protection requirements. Policies that a distributed data base management protection system should allow are described. The system proposed in this work is powerful enough to satisfy the stated requirements and allow for variations on the policies. This system is a hybrid one where both authorizations and constraints can be defined. The system is termed hybrid because it combines features of both open and closed protection systems. In addition the hybrid system, although designed to offer the flexibility of discretionary systems, incorporates the flow control of information between users, a feature found only in some nondiscretionary systems. Furthermore, the proposed system is said to be integrated because authorizations and constraints can be defined on any of the data bases supported by the system including the data bases containing the authorizations, and the constraints themselves. The hybrid system is incorporated in a general model of DDBMS protection. A modular approach is taken for the design of the model. This approach allows us to represent the different options for the model depending on the set of policy choices taken. Three levels of abstraction describing different aspects of DDBMS protection problems are defined. The conceptual level describes the protection control of the DDBMS transactions and information flows. The logical level is concerned with the interaction between the different organizations participating in the DDBMS. The physical level is involved with the architectural implementation of the logical level. | en |
| dc.description.degree | Ph. D. | en |
| dc.format.extent | ix, 258 leaves | en |
| dc.format.mimetype | application/pdf | en |
| dc.identifier.uri | http://hdl.handle.net/10919/53883 | en |
| dc.language.iso | en_US | en |
| dc.publisher | Virginia Polytechnic Institute and State University | en |
| dc.relation.isformatof | OCLC# 12888907 | en |
| dc.rights | In Copyright | en |
| dc.rights.uri | http://rightsstatements.org/vocab/InC/1.0/ | en |
| dc.subject.lcc | LD5655.V856 1985.L374 | en |
| dc.subject.lcsh | Electronic data processing -- Distributed processing | en |
| dc.subject.lcsh | Database management | en |
| dc.subject.lcsh | Data protection | en |
| dc.title | A protection model for distributed data base management systems | en |
| dc.type | Dissertation | en |
| dc.type.dcmitype | Text | en |
| thesis.degree.discipline | Computer Science | en |
| thesis.degree.grantor | Virginia Polytechnic Institute and State University | en |
| thesis.degree.level | doctoral | en |
| thesis.degree.name | Ph. D. | en |
Files
Original bundle
1 - 1 of 1