Performance study of a COTS Distributed DBMS adapted for multilevel security

摘要: Multilevel secure database management system (MLS/DBMS) products no longer enjoy direct commercial-off-the-shelf (COTS) support. Meanwhile, existing users of these MLS/DBMS continue to rely on them satisfy their multilevel security requirements. This calls for a new approach developing systems, one that relies adapting the features COTS rather than depending traditional custom design provide continuing MLS We advocate fragmentation as good basis implementing in because it is well supported some current systems. implemented prototype utilises inherent advantages distribution scheme distributed databases controlling access single-level fragments; this achieved by augmenting module host DBMS with code such clearance user making request always compared classification node containing fragments referenced; requests unauthorised nodes are simply dropped. The we was used instrument series experiments determine relative performance tuple, attribute, and element level schemes. Our measured impact front-end network when various properties each scheme, number tuples, attributes, levels, page size, were varied Selection Join query. particularly interested relationship between degradation changes quantity properties. terms its response time. times increased numbers size increased, more significantly so tuples attributes increased. attribute fastest, suggesting superior tuple In context assurance, research has also shown based natural analogous level. Overall, our study finds demonstrates better (and hence performance) exhibited worst