Show simple item record

dc.contributor.advisorHsiao, David K.
dc.contributor.authorHoppenstand, Gregory S.
dc.dateMarch 1988
dc.date.accessioned2012-11-27T18:18:32Z
dc.date.available2012-11-27T18:18:32Z
dc.date.issued1988-03
dc.identifier.urihttp://hdl.handle.net/10945/23386
dc.description.abstractWhen classified data of different classifications are stored in a database, it is necessary for a contemporary database system to pass through other classified data to find the properly classified data. Although the user of the system may only see data classified at the user's level, the database system itself has breached the security by bringing the other classified data into the main memory from secondary storage. Additionally, the system is not efficient as it could be because unnecessary material has been retrieved. This is a problem in access precision. This thesis proposes a solution to the access precision and pass-through problems using a database counterpart to the mathematical concept of equivalence relations. Each record of the database contains at least one security attribute (e.g., classification) and the database is divided into compartments of records; Compartments are disjoint sets, where each compartment of records has the same aggregate of security attributes. A suitable database model, the Attribute-Based Data Model, is selected, and an example of implementation is provided.en_US
dc.description.urihttp://archive.org/details/secureccesscontr1094523386
dc.format.extent65 p.en_US
dc.language.isoen_US
dc.publisherMonterey, California. Naval Postgraduate Schoolen_US
dc.rightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
dc.subject.lcshComputer scienceen_US
dc.titleSecure access control with high access precisionen_US
dc.typeThesisen_US
dc.contributor.secondreaderWu, T.
dc.contributor.corporateNaval Postgraduate School (U.S.)
dc.contributor.departmentComputer Science
dc.subject.authordatabase securityen_US
dc.subject.authormultilevel securityen_US
dc.subject.authorcomputer securityen_US
dc.description.serviceLieutenant, United States Navyen_US
etd.thesisdegree.nameM.S. in Computer Scienceen_US
etd.thesisdegree.levelMastersen_US
etd.thesisdegree.disciplineComputer Scienceen_US
etd.thesisdegree.grantorNaval Postgraduate Schoolen_US
dc.description.distributionstatementApproved for public release; distribution is unlimited.


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record