Secure buffering in firm real-time database systems

George, Binto ; Haritsa, Jayant R. (1999) Secure buffering in firm real-time database systems The VLDB Journal, 8 (3-4). pp. 178-198. ISSN 1066-8888

Full text not available from this repository.

Official URL: http://www.springerlink.com/content/lelhk2aj4uq0g4...

Related URL: http://dx.doi.org/10.1007/s007780050003

Abstract

Many real-time database applications arise in electronic financial services, safety-critical installations and military systems where enforcing is crucial to the success of the enterprise. We investigate here the performance implications, in terms of killed transactions, of guaranteeing multi-level secrecy in a real-time database system supporting applications with firm deadlines. In particular, we focus on the buffer management aspects of this issue. Our main contributions are the following. First, we identify the importance and difficulties of providing secure buffer management in the real-time database environment. Second, we present, a novel buffer management algorithm that provides covert-channel-free security. SABRE employs a fully dynamic one-copy allocation policy for efficient usage of buffer resources. It also incorporates several optimizations for reducing the overall number of killed transactions and for decreasing the unfairness in the distribution of killed transactions across security levels. Third, using a detailed simulation model, the real-time performance of SABRE is evaluated against unsecure conventional and real-time buffer management policies for a variety of security-classified transaction workloads and system configurations. Our experiments show that SABRE provides security with only a modest drop in real-time performance. Finally, we evaluate SABRE's performance when augmented with the GUARD adaptive admission control policy. Our experiments show that this combination provides close to ideal fairness for real-time applications that can tolerate covert-channel bandwidths of up to one bit per second (a limit specified in military standards).

Item Type:Article
Source:Copyright of this article belongs to Springer.
Keywords:Real-time Database; Covert Channels; Buffer Management; Firm Deadlines
ID Code:62453
Deposited On:22 Sep 2011 03:19
Last Modified:22 Sep 2011 03:19

Repository Staff Only: item control page