This paper examines prototyping as a research tool for studying multilevel secure databases (MLS/DBMS). The paper proposes that an MLS/DBMS design can be quickly prototyped in Prolog. The prototype is then used as a research tool to experiment with the policies and models of the MLS/DBMS. To illustrate the principle, we built a Prolog prototype based on the Bell and LaPadula model. This prototype emphasizes a modular security policy to encourage reuse for other security mechanisms. The prototype also supports an interference control mechanism. It has proved to be a useful research tool for studying MLS/DBMS policies and models. Furthermore, since a prototype using Prolog can be built very quickly, we suggest that future MLS/DBMS models be prototyped and studied before costly mistakes are incurred in a full-scale implementation.
ASJC Scopus subject areas
- Computer Science(all)