Multiversion transaction scheduler for centralized multilevel secure database systems

T. F. Keefe, W. T. Tsai

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

Transactions are vital for multilevel secure database management systems (MLS/DBMSs) because they provide transparency to concurrency and failure. Concurrent execution of transactions may lead to contention among subjects for access to data. In MLS/DBMSs this can lead to covert channels. Multiversion schedulers reduce the contention for access to data by maintaining multiple versions. We propose a secure multiversion scheduling protocol and demonstrate its correctness, i.e., demonstrate that it produces only serializable schedules. We develop an abstract model of a scheduler that implements the protocol and show that it is secure, i.e., satisfies the MLS noninterference assertions. Thus, an implementation which adheres to the assumptions of the abstract model will be both secure and correct. In addition, we consider a method for generating timestamps.

Original languageEnglish (US)
Title of host publicationProceedings of the High-Assurance Systems Engineering Workshop
Place of PublicationLos Alamitos, CA, United States
PublisherIEEE
Pages206-213
Number of pages8
StatePublished - 1997
Externally publishedYes
EventProceedings of the 1996 High-Assurance Systems Engineering Workshop - Niagara, Can
Duration: Oct 21 1996Oct 22 1996

Other

OtherProceedings of the 1996 High-Assurance Systems Engineering Workshop
CityNiagara, Can
Period10/21/9610/22/96

Fingerprint

Transparency
Scheduling

ASJC Scopus subject areas

  • Engineering(all)

Cite this

Keefe, T. F., & Tsai, W. T. (1997). Multiversion transaction scheduler for centralized multilevel secure database systems. In Proceedings of the High-Assurance Systems Engineering Workshop (pp. 206-213). Los Alamitos, CA, United States: IEEE.

Multiversion transaction scheduler for centralized multilevel secure database systems. / Keefe, T. F.; Tsai, W. T.

Proceedings of the High-Assurance Systems Engineering Workshop. Los Alamitos, CA, United States : IEEE, 1997. p. 206-213.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Keefe, TF & Tsai, WT 1997, Multiversion transaction scheduler for centralized multilevel secure database systems. in Proceedings of the High-Assurance Systems Engineering Workshop. IEEE, Los Alamitos, CA, United States, pp. 206-213, Proceedings of the 1996 High-Assurance Systems Engineering Workshop, Niagara, Can, 10/21/96.
Keefe TF, Tsai WT. Multiversion transaction scheduler for centralized multilevel secure database systems. In Proceedings of the High-Assurance Systems Engineering Workshop. Los Alamitos, CA, United States: IEEE. 1997. p. 206-213
Keefe, T. F. ; Tsai, W. T. / Multiversion transaction scheduler for centralized multilevel secure database systems. Proceedings of the High-Assurance Systems Engineering Workshop. Los Alamitos, CA, United States : IEEE, 1997. pp. 206-213
@inproceedings{fff06a649ba646589b8e058e3b19b063,
title = "Multiversion transaction scheduler for centralized multilevel secure database systems",
abstract = "Transactions are vital for multilevel secure database management systems (MLS/DBMSs) because they provide transparency to concurrency and failure. Concurrent execution of transactions may lead to contention among subjects for access to data. In MLS/DBMSs this can lead to covert channels. Multiversion schedulers reduce the contention for access to data by maintaining multiple versions. We propose a secure multiversion scheduling protocol and demonstrate its correctness, i.e., demonstrate that it produces only serializable schedules. We develop an abstract model of a scheduler that implements the protocol and show that it is secure, i.e., satisfies the MLS noninterference assertions. Thus, an implementation which adheres to the assumptions of the abstract model will be both secure and correct. In addition, we consider a method for generating timestamps.",
author = "Keefe, {T. F.} and Tsai, {W. T.}",
year = "1997",
language = "English (US)",
pages = "206--213",
booktitle = "Proceedings of the High-Assurance Systems Engineering Workshop",
publisher = "IEEE",

}

TY - GEN

T1 - Multiversion transaction scheduler for centralized multilevel secure database systems

AU - Keefe, T. F.

AU - Tsai, W. T.

PY - 1997

Y1 - 1997

N2 - Transactions are vital for multilevel secure database management systems (MLS/DBMSs) because they provide transparency to concurrency and failure. Concurrent execution of transactions may lead to contention among subjects for access to data. In MLS/DBMSs this can lead to covert channels. Multiversion schedulers reduce the contention for access to data by maintaining multiple versions. We propose a secure multiversion scheduling protocol and demonstrate its correctness, i.e., demonstrate that it produces only serializable schedules. We develop an abstract model of a scheduler that implements the protocol and show that it is secure, i.e., satisfies the MLS noninterference assertions. Thus, an implementation which adheres to the assumptions of the abstract model will be both secure and correct. In addition, we consider a method for generating timestamps.

AB - Transactions are vital for multilevel secure database management systems (MLS/DBMSs) because they provide transparency to concurrency and failure. Concurrent execution of transactions may lead to contention among subjects for access to data. In MLS/DBMSs this can lead to covert channels. Multiversion schedulers reduce the contention for access to data by maintaining multiple versions. We propose a secure multiversion scheduling protocol and demonstrate its correctness, i.e., demonstrate that it produces only serializable schedules. We develop an abstract model of a scheduler that implements the protocol and show that it is secure, i.e., satisfies the MLS noninterference assertions. Thus, an implementation which adheres to the assumptions of the abstract model will be both secure and correct. In addition, we consider a method for generating timestamps.

UR - http://www.scopus.com/inward/record.url?scp=0030651590&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0030651590&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:0030651590

SP - 206

EP - 213

BT - Proceedings of the High-Assurance Systems Engineering Workshop

PB - IEEE

CY - Los Alamitos, CA, United States

ER -