Secure multilevel object oriented database management system

Assignee

• ONTOS AG · US

Inventors

• Marvin Schaefer · Bethesda, US
• Paul Martel · Richardson, US
• Antoun Joubran Kanawati · Seattle, US
• Sandra Wade · Rockville, US

Key dates

Classification

• Technology area (CPC Y)Emerging Cross-Sectional Technologies
• CPC primaryY10S707/99952
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A secure multilevel object oriented database management system which maintains data confidentiality and optimizes data integrity. All requests for database operations are mediated through an access validation monitor (AVM). The AVM is responsible for performing the following duties: applying mandatory and discretionary access control rules for each request it services to ensure the request is allowable; constructing views of multilevel objects ensuring that the clearance level of the subject making the request dominates the classification of the data being requested; managing data update requests so as to allow polyinstantiation only upon receiving explicit requests from the subject, the explicit request being accomplished through an update to the associated semantic vector (Semantic vectors are employed to maintain data integrity); detecting erroneous polyinstantiation attempts and flagging such errors to the requesting subject; and managing the creation of new multilevel objects, and enforces entity integrity constraints. The AVM constructs the requesting subject's view of a multilevel object at a particular security level by computing a value for each property of the object. Eac…