使用时间戳排序维护安全策略的一致性

Proceedings. International Conference on Information Technology: Coding and Computing Pub Date : 2002-04-08 DOI:10.1109/ITCC.2002.1000381

S. Ngamsuriyaroj, A. Hurson, T. Keefe

{"title":"使用时间戳排序维护安全策略的一致性","authors":"S. Ngamsuriyaroj, A. Hurson, T. Keefe","doi":"10.1109/ITCC.2002.1000381","DOIUrl":null,"url":null,"abstract":"In this paper we propose an invalidation-based consistency protocol using timestamp ordering for concurrency control. The protocol works for a system composed of a security server and object managers located on different machines. The security server defines the security policy in a small database and object managers enforce the policy replicated on each machine. Thus, the system can be modeled as a replicated database. Since transient inconsistency among replicas may lead to unauthorized accesses, our goal of consistency is one-copy serializability (1SR) because it guarantees a one-copy view of the security policy regardless of which copy is accessed. However the requirement for good performance is also desirable. We evaluate the performance of the proposed protocol and compare it with the performance of the transactional consistency protocol, an invalidation-based consistency protocol based on a locking mechanism. Both protocols guarantee 1SR consistency. The results show that both protocols demonstrate compatible performance. However the proposed protocol offers 1SR consistency with less overhead.","PeriodicalId":115190,"journal":{"name":"Proceedings. International Conference on Information Technology: Coding and Computing","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2002-04-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Maintaining consistency of the security policy using timestamp ordering\",\"authors\":\"S. Ngamsuriyaroj, A. Hurson, T. Keefe\",\"doi\":\"10.1109/ITCC.2002.1000381\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we propose an invalidation-based consistency protocol using timestamp ordering for concurrency control. The protocol works for a system composed of a security server and object managers located on different machines. The security server defines the security policy in a small database and object managers enforce the policy replicated on each machine. Thus, the system can be modeled as a replicated database. Since transient inconsistency among replicas may lead to unauthorized accesses, our goal of consistency is one-copy serializability (1SR) because it guarantees a one-copy view of the security policy regardless of which copy is accessed. However the requirement for good performance is also desirable. We evaluate the performance of the proposed protocol and compare it with the performance of the transactional consistency protocol, an invalidation-based consistency protocol based on a locking mechanism. Both protocols guarantee 1SR consistency. The results show that both protocols demonstrate compatible performance. However the proposed protocol offers 1SR consistency with less overhead.\",\"PeriodicalId\":115190,\"journal\":{\"name\":\"Proceedings. International Conference on Information Technology: Coding and Computing\",\"volume\":\"16 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2002-04-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings. International Conference on Information Technology: Coding and Computing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ITCC.2002.1000381\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings. International Conference on Information Technology: Coding and Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITCC.2002.1000381","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

在本文中，我们提出了一种基于无效的一致性协议，使用时间戳排序进行并发控制。该协议适用于由位于不同机器上的安全服务器和对象管理器组成的系统。安全服务器在一个小型数据库中定义安全策略，对象管理器执行在每台机器上复制的策略。因此，可以将系统建模为复制的数据库。由于副本之间的短暂不一致可能导致未经授权的访问，因此我们的一致性目标是单副本序列化性(1SR)，因为它保证了安全策略的单副本视图，而不管访问哪个副本。然而，对良好性能的要求也是可取的。我们评估了所提出协议的性能，并将其与事务性一致性协议的性能进行了比较，事务性一致性协议是一种基于锁定机制的基于无效的一致性协议。两种协议都保证1SR一致性。结果表明，两种协议具有良好的兼容性能。然而，提议的协议以较少的开销提供了1SR一致性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Maintaining consistency of the security policy using timestamp ordering

In this paper we propose an invalidation-based consistency protocol using timestamp ordering for concurrency control. The protocol works for a system composed of a security server and object managers located on different machines. The security server defines the security policy in a small database and object managers enforce the policy replicated on each machine. Thus, the system can be modeled as a replicated database. Since transient inconsistency among replicas may lead to unauthorized accesses, our goal of consistency is one-copy serializability (1SR) because it guarantees a one-copy view of the security policy regardless of which copy is accessed. However the requirement for good performance is also desirable. We evaluate the performance of the proposed protocol and compare it with the performance of the transactional consistency protocol, an invalidation-based consistency protocol based on a locking mechanism. Both protocols guarantee 1SR consistency. The results show that both protocols demonstrate compatible performance. However the proposed protocol offers 1SR consistency with less overhead.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings. International Conference on Information Technology: Coding and Computing

自引率

0.00%

发文量