Develop Secure Database System with Security Extended ER Model

Liu, Xin; Han, Zhen; Liu, Jiqiang; Shen, Chang-xiang

doi:10.1007/11553939_141

Xin Liu^21,22,
Zhen Han²¹,
Jiqiang Liu²¹ &
…
Chang-xiang Shen^21,23

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 3683))

Included in the following conference series:

International Conference on Knowledge-Based and Intelligent Information and Engineering Systems

1336 Accesses

Abstract

Database system security is desired for acutely today. But it is difficult and expensive to develop secure database system because the developers usually find it difficult to design a consistent and complete database structure. To solve the problem we focus on the research results on both DB design model and the security mechanisms. The secure database system development will be simplified greatly by combining database design methodology and information security technique. So we made the effort to combine the security control mechanisms (e.g. MAC) and database develop model-Entity Relation (ER) model to construct a Security Extended ER (SEER) model. The security of the database system developed with SEER model is analyzed at the last part in the paper. The research and applying of SEER model puts forward a new ideal about secure database system development.

The paper is supported by 973 project of China (Grant No. TG1999035801)

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Ensuring Database Security with the Universal Basis of Relations

Automated Generation of Multi-tenant Database Systems Based upon System Design Diagrams

An Approach to Multiple Security System Development Using Database Schemas

References

Department of Defense: Trusted Computer System Evaluation Criteria, DoD 5200.28-STD (December 1985)
Google Scholar
NCSC: The Trusted Database Management System Interpretation of Trusted Computer System Evaluation Criteria, NCSC-TG-21 (April 1991)
Google Scholar
Chen, P.P.: The Entity-Relationship Model: Towards & Unified View of Data. ACM Transaction on Database Systems 1(1), 9–36 (1976)
Article Google Scholar
Lunt, T.F., Denning, D.E., Schell, R.R., Heckman, M., Shockley, W.R.: The SeaView security model. IEEE Transactions on Software Engineering 16(6), 593–607 (1990)
Article Google Scholar
Wood, A.W., Lewis, S.R., Wiseman, S.R.: The SWORD Multilevel Secure DBMS, DRA Report No. 92005 (1992)
Google Scholar
Lewis, S., Wiseman, S.: Database design and MLS DBMSs: an unhappy alliance? In: Proceedings Computer Security Applications Conference, 1993, Ninth Annual, December 6-10, pp. 232–243 (1993)
Google Scholar
Bell, D.E., La Padula, L.J.: Secure Computer Systems: A Refinement of the Mathematical Fundations [J], ESD-TR-73-278, vol. III, AD 780 528, Electronic Systems Division, Air Force System Command, Hanscom AFB, Bedford, Massachusetts (November 1974)
Google Scholar
The PostgreSQL Global Development Group, PostgreSQL 7.3.2 Developer.s Guide [S/OL], http://www.postgresql.org/docs/pdf/7.3/developer-7.3.2-A4.pdf_2004/4-25

Download references

Author information

Authors and Affiliations

Research Center of Information Security Architecture, Beijing Jiaotong University, Beijing, China
Xin Liu, Zhen Han, Jiqiang Liu & Chang-xiang Shen
Department 4, Naval University of Engineering, Wuhan, China
Xin Liu
The Naval Compute Technology Institute, Beijing, China
Chang-xiang Shen

Authors

Xin Liu
View author publications
You can also search for this author in PubMed Google Scholar
Zhen Han
View author publications
You can also search for this author in PubMed Google Scholar
Jiqiang Liu
View author publications
You can also search for this author in PubMed Google Scholar
Chang-xiang Shen
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

School of Business, La Trobe University, 3086, Melbourne, Victoria, Australia
Rajiv Khosla
Centre for SMART systems Engineering Research Centre, University of Brighton, BN2 4GJ, Moulsecoomb, Brighton, UK
Robert J. Howlett
School of Electrical and Information Engineering, Knowledge Based Intelligent Engineering Systems Centre, University of South Australia, 5095, Mawson Lakes, SA, Australia
Lakhmi C. Jain

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Liu, X., Han, Z., Liu, J., Shen, Cx. (2005). Develop Secure Database System with Security Extended ER Model. In: Khosla, R., Howlett, R.J., Jain, L.C. (eds) Knowledge-Based Intelligent Information and Engineering Systems. KES 2005. Lecture Notes in Computer Science(), vol 3683. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11553939_141

Download citation

DOI: https://doi.org/10.1007/11553939_141
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-28896-1
Online ISBN: 978-3-540-31990-0
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics