SUPPORTING TIMING-CHANNEL FREE COMPUTATIONS IN MULTILEVEL SECURE OBJECT-ORIENTED DATABASES
Abstract:
In an earlier paper [3], Jajodia and Kogan proposed a message filter approach to enforcing mandatory security in multilevel object-oriented databases. The key idea in the message filter model is that all information exchange be permitted solely through messages and that security be enforced by a message filter component that mediates these messages. In a recent paper [8] the authors proposed a kernelized architecture for implementing the message filter model. A major complication in implementing this model arises due to timing channels intrinsic to the object-oriented model of computing. These channels arise because object-oriented "write-up " operations are abstract and arbitrarily complex (as opposed to primitive memory writes). One approach to closing these timing channels is to execute a logically sequential computation as concurrent pieces. Our earlier paper presented an execution model for managing such concurrent computations as well as a multiversion synchronization protocol to guarantee correctness with respect to the intended sequential execution. While our approach with asynchronous computations can close such channels, the scheduling strategy presented earlier was not totally secure as it may be exploited for timing channels under certain conditions. In this paper we present a revised execution model that not only guarantees correctness but is also timing channel free. We give proof outlines to support these claims. 1
Citations
| 149 | Development of an object-oriented DBMS – Maier, Stein, et al. - 1986 |
| 38 | Integrating an Object-oriented Data Model With Multilevel Security – Jajodia, Kogan - 1990 |
| 11 | et al. Features of the Orion objectoriented database system – Kim - 1989 |
| 10 | A Multilevel Security Model For Object-Oriented Systems – Keefe, Tsai, et al. - 1988 |
| 8 | IRIS: An object-oriented database management system – Fisherman - 1987 |
| 8 | Secure Knowledge-based Systems – Millen, Lunt - 1989 |
| 7 | Multilevel Secure Object-Oriented Data Model: Issues on Noncomposite Objects, Composite Objects, and Versioning – Thuraisingham - 1991 |
| 5 | Prototyping the SODA security model – Keefe, Tsai - 1989 |
| 5 | A Secure Kernelized Architecture for Multilevel Object-Oriented Databases – Sandhu, Thomas, et al. - 1991 |
