The inference problem: Maintaining maximal availability in the presence of database updates

In this paper, we present the Dynamic Disclosure Monitor (D 2Mon) architecture to prevent illegal inferences via database constraints. D 2Mon extends the functionality of Disclosure Monitor (DiMon) to address database updates while preserving the soundness and completeness properties of the inferenc...

Full description

Saved in:
Bibliographic Details
Published in:Computers & security 2010-02, Vol.29 (1), p.88-103
Main Authors: Toland, Tyrone S., Farkas, Csilla, Eastman, Caroline M.
Format: Article
Language:English
Subjects:
Access control
Availability
Collaboration
Collusion
Computer architecture
Confidentiality
Disclosure inference
Information retrieval
Studies
Updates
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In this paper, we present the Dynamic Disclosure Monitor (D 2Mon) architecture to prevent illegal inferences via database constraints. D 2Mon extends the functionality of Disclosure Monitor (DiMon) to address database updates while preserving the soundness and completeness properties of the inference algorithms. We study updates from the perspective of increasing data availability. That is, updates on tuples that were previously released may affect the correctness of the user inferences over these tuples. We develop a mechanism, called Update Consolidator (UpCon), that propagates updates to a history file to ensure that no query is rejected based on inferences derived from outdated data. The history file is used by the Disclosure Inference Engine (DiIE) to compute inferences. We show that UpCon and DiIE working together guarantee confidentiality (completeness property of the data-dependent disclosure inference algorithm) and maximal availability (soundness property of the data-dependent disclosure inference algorithm) even in the presence of updates. We also present our implementation of D 2Mon and our empirical results.
ISSN:0167-4048
1872-6208
DOI:10.1016/j.cose.2009.07.004