Browse > Article

A Polyinstantiation Method for Spatial Objects with Several Aspatial Information and Different Security Levels  

오영환 (나사렛대학교)
전영섭 (㈜케이지아이)
조숙경 (인천대)
배해영 (인하대학교 컴퓨터공학부)
Publication Information
Journal of KIISE:Databases / v.30, no.6, 2003 , pp. 585-592 More about this Journal
Abstract
In the spatial database systems, it is necessary to manage spatial objects that have two or more aspatial information with different security levels on the same layer. If we adapt the polyinstantiation concept of relational database system for these spatial objects, it is difficult to process the representation problem of spatial objects and to solve the security problem that is service denial and information flow by access of subject that has a different security level. To address these problems, we propose a polyinstantiation method for security management of spatial objects in this paper. The proposed method manages secure spatial database system efficiently by creating spatial objects according to user's security level through security-level-conversion-step and polyinstantiation-generation-step with multi-level security policy. Also, in case of user who has a different security level requires secure operations, we create polyinstance for spatial object to solve problems of service denial and information flow.
Keywords
Spatial Database; Database Security; Information Flow; Polyinstantiation;
Citations & Related Records
Times Cited By KSCI : 2  (Citation Analysis)
연도 인용수 순위
1 Jajodia, S., Sandhu, R and Sibley, E., 'Update Semantics for Multilevel Relations,' Proceeding of the Sixth Computer Security .Applications Conference, pp.103-112, 1990   DOI
2 Lunt, T. and Hsieh, D., 'Update Semantics for a Mulitlevel Relational Database System,' Proceeding of the IFIP WG 11.3 Workshop on Database Security, pp.281-296, 1990
3 Sandhu, Rand Jajodia, S., 'Eliminating Polyinstantiation Securely,' Computer & Security, Vol. 11 , No.6, pp.547-562, 1992   DOI   ScienceOn
4 Denning, D., Lunt, T., Schell, R, Heckman, M., and Shockley, W., 'A Multilevel Relational Data Model,' Advances in Computer System Security, Vol.III, Artech House Inc., pp.234-248
5 Guerrini, G., Bertino, E., Catania, B., and Garcia-Molina, G., 'A Formal Model of Views for Object-Oriented Database Systems,' Technical Report, DISI-96-2, 1996
6 Jajodia, S., 'Database Security : Current Status and Key Issues,' SIGMOD Record, Vol.19, No.4, pp.123-126, 1990   DOI
7 전영섭, 오영환, 이순조, 임기욱, 배해영, '다단계 보안을 갖는 공간 뷰를 이용한 정보 흐름 제어', 정보처리학회 춘계 학술발표논문집 제8권, 제1호, pp.93-96   과학기술학회마을
8 조완수, '다단계보안을 위한 확장 관계 데이타베이스 시스템 설계', 박사학위 논문, 인하대학교, 1996
9 Jajodia, S. and Kogan, B., 'Integrating an Object-Oriented Data Model with Multilevel Security,' Proc. of IEEE Symposium on Research in Security and Privacy, 1990   DOI
10 Jajodia, S. and Sandhu, R, 'Polyinstantiation Integrity in Multilevel Relations,' Proc.of IEEE Computer Society Symposium on Research in Security and Privacy, pp.104-115, 1990   DOI
11 Miranda, S., 'Aspects of Data Security in General-Purpose Database Management Systems,' Proc. of the First Five Symposia 1980-1984, Vol. I, pp.46-58
12 Sandhu, R, 'Lattice-based access control models:' Computer, 26:9-19, 1993   DOI   ScienceOn
13 Lin, T., 'Bell and LaPadula Axioms: A New Paradigm for an Old Model,' Proc. of 1992-1993 ACM SIGSAC New Security Paradigms Workshop, pp.82-93, 1993   DOI
14 Kogan, B. and Jajodia, S., 'Concurrency Control in Multilevel secure Databases Using Replicated Architecture,' Proc. ACM SIGMOD Int'l. Conf. on Management of Data, pp.153-162, 1990   DOI
15 Lunt, T., 'Multilevel Security for Object-Oriented Database Systems:' Database Security III, pp.199-209, 1990