A policy-based approach for assuring data integrity in DBMSs

6th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2010) Pub Date : 2010-10-01 DOI:10.4108/ICST.TRUSTCOL.2010.4

Hyo-Sang Lim, Chenyun Dai, E. Bertino

{"title":"A policy-based approach for assuring data integrity in DBMSs","authors":"Hyo-Sang Lim, Chenyun Dai, E. Bertino","doi":"10.4108/ICST.TRUSTCOL.2010.4","DOIUrl":null,"url":null,"abstract":"Data integrity is crucial for collaborative activities where information is shared among multiple organizations to effectively make cooperative and mission-critical decisions. Assuring data integrity is particularly challenging in the presence of frequent data modifications by collaborative parties, especially for large-scale collaborations. However, data integrity is difficult to grasp with a single concept or a single model since the definition can vary depending on the goals and requirements of the collaboration. To address this multi-faced feature of data integrity, we propose a policy-based approach by which one can specify data integrity policies according to the requirements of collaborations and enforce the policies on DBMSs, an essential software component for large-scale collaboration activities. We first introduce our integrity policy language, which provides comprehensive framework for specifying and enforcing integrity policies based on access control, data validation, and metadata management functions. Next, to make our policy language work with existing off-the-shelf DBMSs, we present an integration strategy which we call language level integration (LLI). The LLI strategy enforces integrity policies by automatically translating high-level integrity policies, expressed in our policy language, onto low-level database operations. Compared to alternative approaches, the LLI strategy can be easily implemented since it does not require modifications to the source code of the DBMS or to the code of the applications running on top of the DBMS. Also, with the LLI strategy, the policies cannot be bypassed regardless of which database interface is used by the applications since the policies are implemented by DBMS functions and objects, and then, automatically enforced by the DBMS itself. We then present a software architecture of implementing the integrity policy language with the LLI strategy for a real DBMS (Oracle) and show that our strategy can easily implement well-known data integrity models.","PeriodicalId":354101,"journal":{"name":"6th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2010)","volume":"8 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"6th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2010)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4108/ICST.TRUSTCOL.2010.4","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

Data integrity is crucial for collaborative activities where information is shared among multiple organizations to effectively make cooperative and mission-critical decisions. Assuring data integrity is particularly challenging in the presence of frequent data modifications by collaborative parties, especially for large-scale collaborations. However, data integrity is difficult to grasp with a single concept or a single model since the definition can vary depending on the goals and requirements of the collaboration. To address this multi-faced feature of data integrity, we propose a policy-based approach by which one can specify data integrity policies according to the requirements of collaborations and enforce the policies on DBMSs, an essential software component for large-scale collaboration activities. We first introduce our integrity policy language, which provides comprehensive framework for specifying and enforcing integrity policies based on access control, data validation, and metadata management functions. Next, to make our policy language work with existing off-the-shelf DBMSs, we present an integration strategy which we call language level integration (LLI). The LLI strategy enforces integrity policies by automatically translating high-level integrity policies, expressed in our policy language, onto low-level database operations. Compared to alternative approaches, the LLI strategy can be easily implemented since it does not require modifications to the source code of the DBMS or to the code of the applications running on top of the DBMS. Also, with the LLI strategy, the policies cannot be bypassed regardless of which database interface is used by the applications since the policies are implemented by DBMS functions and objects, and then, automatically enforced by the DBMS itself. We then present a software architecture of implementing the integrity policy language with the LLI strategy for a real DBMS (Oracle) and show that our strategy can easily implement well-known data integrity models.

查看原文本刊更多论文

用于确保dbms中数据完整性的基于策略的方法

数据完整性对于在多个组织之间共享信息以有效地做出协作和关键任务决策的协作活动至关重要。在协作方频繁修改数据的情况下，确保数据完整性尤其具有挑战性，尤其是在大规模协作中。然而，数据完整性很难通过单个概念或单个模型来掌握，因为其定义可能会根据协作的目标和需求而变化。为了解决数据完整性的这种多面性，我们提出了一种基于策略的方法，通过这种方法可以根据协作的需求指定数据完整性策略，并在dbms(大规模协作活动的基本软件组件)上执行这些策略。我们首先介绍我们的完整性策略语言，它为基于访问控制、数据验证和元数据管理功能指定和实施完整性策略提供了全面的框架。接下来，为了使策略语言与现有的现成dbms一起工作，我们提出了一种集成策略，我们称之为语言级集成(LLI)。LLI策略通过自动将用策略语言表示的高级完整性策略转换为低级数据库操作来执行完整性策略。与其他方法相比，LLI策略可以很容易地实现，因为它不需要修改DBMS的源代码或运行在DBMS之上的应用程序的代码。此外，对于LLI策略，无论应用程序使用哪个数据库接口，策略都不能被绕过，因为策略是由DBMS函数和对象实现的，然后由DBMS本身自动执行。然后，我们提出了一个用LLI策略实现一个真实的DBMS (Oracle)的完整性策略语言的软件架构，并表明我们的策略可以很容易地实现众所周知的数据完整性模型。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

6th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2010)

自引率

0.00%

发文量