Abstract
A security policy for a multilevel secure relational database management system (DBMS) is stated. The DBMS is implemented as a trusted subject that can be hosted on any of a variety of secure operating systems. Accordingly, the policy is stated in two parts: (1) a generic policy for the operating-system TCB (trusted computing base) layer that states requirements that any operating system must meet so that the DBMS can be hosted on it; and (2) the policy of the DBMS TCB layer. It is argued that the DBMS can be evaluated for each operating system on which it is hosted without reevaluating the underlying operating system. Rationale is given for implementing the DBMS as a trusted subject rather than using a Hinke-Schaefer architecture. The policy addresses secrecy and integrity. >
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
