Controlled query evaluation for enforcing confidentiality in complete information systems

Joachim Biskup and Piero Bonatti

From the issue entitled "Special issue on ESORICS 2002"

View Related Documents

Book Chapter
Confidentiality Policies for Controlled Query Evaluation
Joachim Biskup and Torben Weibert
Lecture Notes in Computer Science, 2007, Volume 4602, Data and Applications Security XXI, Pages 1-13
- Download PDF (406.2 KB)
Book Chapter
Controlled Query Evaluation with Open Queries for a Decidable Relational Submodel
Joachim Biskup and Piero Bonatti
Lecture Notes in Computer Science, 2006, Volume 3861, Foundations of Information and Knowledge Systems, Pages 43-62
- Download PDF (528.0 KB)
Book Chapter
Confidentiality Policies and Their Enforcement for Controlled Query Evaluation
Joachim Biskup and Piero Bonatti
Lecture Notes in Computer Science, 2002, Volume 2502, Computer Security — ESORICS 2002, Pages 39-55
- Download PDF (218.1 KB)
Book Chapter
Inference Control in Logic Databases as a Constraint Satisfaction Problem
Joachim Biskup, Dominique Marc Burgard, Torben Weibert and Lena Wiese
Lecture Notes in Computer Science, 2007, Volume 4812, Information Systems Security, Pages 128-142
- Download PDF (499.8 KB)
Book Chapter
Enforcing Confidentiality in Relational Databases by Reducing Inference Control to Access Control
Joachim Biskup and Jan-Hendrik Lochner
Lecture Notes in Computer Science, 2007, Volume 4779, Information Security, Pages 407-422
- Download PDF (440.8 KB)
Book Chapter
Requirements and Protocols for Inference-Proof Interactions in Information Systems
Joachim Biskup, Christian Gogolin, Jens Seiler and Torben Weibert
Lecture Notes in Computer Science, 2009, Volume 5789, Computer Security – ESORICS 2009, Pages 285-302
- Download PDF (294.3 KB)
Book Chapter
Optimization of the Controlled Evaluation of Closed Relational Queries
Joachim Biskup, Jan-Hendrik Lochner and Sebastian Sonntag
IFIP Advances in Information and Communication Technology, 2009, Volume 297, Emerging Challenges for Security, Privacy and Trust, Pages 214-225
- Download PDF (234.2 KB)
Journal Article
Controlled Query Evaluation for Known Policies by Combining Lying and Refusal
Joachim Biskup and Piero A. Bonatti
Annals of Mathematics and Artificial Intelligence, 2004, Volume 40, Numbers 1-2, Pages 37-62
- Download PDF (178.2 KB)
Book Chapter
History-Dependent Inference Control of Queries by Dynamic Policy Adaption
Joachim Biskup
Lecture Notes in Computer Science, 2011, Volume 6818, Data and Applications Security and Privacy XXV, Pages 106-121
- Download PDF (298.9 KB)
Journal Article
Controlled query evaluation with open queries for a decidable relational submodel
Joachim Biskup and Piero Bonatti
Annals of Mathematics and Artificial Intelligence, 2007, Volume 50, Numbers 1-2, Pages 39-77
- Download PDF (585.6 KB)

Abstract

An important goal of security in information systems is confidentiality. A confidentiality policy specifies which users should be forbidden to acquire what kind of information. A controlled query evaluation should enforce such a policy even if users are able to reason about a priori knowledge and the answers to previous queries. The following aspects are considered: formal models of confidentiality policies based on potential secrets or secrecies, user awareness of the policy instance, and enforcement methods applying either lying or refusal, or a combination thereof. Reconsidering previous work and filling the gaps, we comprehensively treat and compare the resulting 12 cases. Thereby, the assumed completeness of the information system is essentially used.

Keywords Inference control - Confidentiality - Refusal - Lying - Complete information system

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

Controlled query evaluation for enforcing confidentiality in complete information systems

View Related Documents

Abstract

Fulltext Preview