Abstract
Conflicts in database systems with both real-time and security requirements can be unresolvable. We address this issue by allowing a database system to provide partial security in order to improve real-time performance when necessary. Systems that are partially secure allow potential security violations such as covert channel use at certain situations. We present the idea of requirement specification that enables the system designer to specify important properties of the database at an appropriate level. To help the designer, a tool can process the database specification to find unresolvable conflicts, and to allow the designer to specify the rules to follow during execution when those conflicts arise. We discuss several partial security policies and compare their performance in terms of timeliness and potential security violations.
| Original language | English |
|---|---|
| Pages (from-to) | 136-147 |
| Number of pages | 12 |
| Journal | Proceedings of the IEEE Computer Society Symposium on Research in Security and Privacy |
| State | Published - 1998 |
| Event | Proceedings of the 1998 IEEE Symposium on Security and Privacy - Oakland, CA, USA Duration: 3 May 1998 → 6 May 1998 |