ASDViews (relational databases)

Abstract

A description is given of ASDViews, an implementation of views as the security object in a multilevel secure relational database management system (DBMS) that results in a small trusted computing base (TCB) as required to meet the criteria for evaluation class B2 and above. A general view is the result of a database query. Since most of the code which implements the DBMS is involved in processing the query, most of the DBMS must be trusted. ASDViews is defined using a subset of the relational algebra to restrict the size of the query language available to define a secure view. This approach reduces that part of the TCB required to implement secure views to roughly 1000 lines of code.<>