Separation of Duties for Multiple Relations in Cloud Databases As an Optimization Problem
| Title | Separation of Duties for Multiple Relations in Cloud Databases As an Optimization Problem |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Bollwein, Ferdinand, Wiese, Lena |
| Conference Name | Proceedings of the 21st International Database Engineering & Applications Symposium |
| Date Published | July 2017 |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-5220-8 |
| Keywords | composability, Human Behavior, Integer Linear Program, Metrics, pubcrawl, relational database security, resilience, Resiliency, Separation of Duties, Vertical Fragmentation |
| Abstract | Confidentiality concerns are important in the context of cloud databases. In this paper, the technique of vertical fragmentation is explored to break sensitive associations between columns of several database tables according to confidentiality constraints. By storing insensitive portions of the database at different non-communicating servers it is possible to overcome confidentiality concerns. In addition, visibility constraints and data dependencies are supported. Moreover, to provide some control over the distribution of columns among different servers, novel closeness constraints are introduced. Finding confidentiality-preserving fragmentations is studied in the context of mathematical optimization and a corresponding integer linear program formulation is presented. Benchmarks were performed to evaluate the suitability of our approach. |
| URL | https://dl.acm.org/doi/10.1145/3105831.3105873 |
| DOI | 10.1145/3105831.3105873 |
| Citation Key | bollwein_separation_2017 |