This article presents an approach to concurrency control for transactions in a Multilevel Secure Database Management System (MLS/DBMS). The major problem is that concurrency control mechanisms used in traditional DBMSs are not adequate in a MLS/DBMS, since they may be exploited to establish covert channels. The approach presented in this article, which uses single-version data items, is based on the use of nested transactions, application-level recovery, and notification-based locking protocols. All these features allow us to develop a concurrency control mechanism that is free of timing channels and avoids many of the shortcomings of the concurrency control mechanisms so far developed for conventional (i.e., flat) transactions, such as transaction starvation and resource wastage.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Paul Ammann , Frank Jacckle , Sushi Jajodia, A Two Snapshot Algorithm for Concurrency Control in Multi-Level Secure Databases, Proceedings of the 1992 IEEE Symposium on Security and Privacy, p.204, May 04-06, 1992
	2	Paul Ammann , Sushil Jajodia, A Timestamp Ordering Algorithm for Secure, Single-Version, Multi-Level Databases, Results of the IFIP WG 11.3 Workshop on Database Security V: Status and Prospects, p.191-202, November 01, 1991
	3	Paul Ammann , Sushil Jajodia, An efficient multiversion algorithm for secure servicing of transaction reads, Proceedings of the 2nd ACM Conference on Computer and communications security, p.118-125, November 1994, Fairfax, Virginia, United States  [doi>10.1145/191177.191201]
	4	ATLURI, V., JAJODIA, S., MCCOLLUM,C.,AND MUKKAMALA, R. 1997. Multilevel secure transaction processing: Status and prospects. In Database Security: Status and Prospects P. Samarati, and R. Sandhu, Eds, Chapman & Hall.
	5	Catriel Beeri , Philip A. Bernstein , Nathan Goodman, A model for concurrency in nested transactions systems, Journal of the ACM (JACM), v.36 n.2, p.230-269, April 1989  [doi>10.1145/62044.62046]
	6	BERTINO, E., CATANIA,B.,AND FERRARI, E. 2000. A nested transaction model for multilevel secure database management system. Tech. Rep. Dept. of Computer Science, University of Milan, Italy.
	7	BELL,D.E.AND LAPADULA, L. J. 1976 Secure computer systems: Unified exposition and multics interpretation. Tech. Rep. MTR-2997, The Mitre Corp., Bedford, MA.
	8	Philip A. Bernstein , Vassco Hadzilacos , Nathan Goodman, Concurrency control and recovery in database systems, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 1987
	9	Elisa Bertino , Sushil Jajodia , Luigi Mancini , Indrajit Ray, Advanced Transaction Processing in Multilevel Secure File Stores, IEEE Transactions on Knowledge and Data Engineering, v.10 n.1, p.120-135, January 1998  [doi>10.1109/69.667095]
	10	Department of Defense. Trusted computer system evaluation criteria, DOD 5200.28-STD, Dept. of Defense, Washington, D.C.
	11	GOGUEN,J.A.AND MESEGUER, J. 1982. Security policy and security models. In Proceedings of the IEEE Symposium on Security and Privacy.
	12	Jim Gray , Andreas Reuter, Transaction Processing: Concepts and Techniques, Morgan Kaufmann Publishers Inc., San Francisco, CA, 1992
	13	Ugur Halici , Budak Arpinar , Asuman Dogac, Serializability of Nested Transactions in Multidatabases, Proceedings of the 6th International Conference on Database Theory, p.321-335, January 08-10, 1997
	14	Theo Härder , Kurt Rothermel, Concurrency control issues in nested transactions, The VLDB Journal — The International Journal on Very Large Data Bases, v.2 n.1, p.39-74, January 1993  [doi>10.1007/BF01231798]
	15	Informix-Online/Secure Administrator's Guide, Menlo Park, CA.
	16	Informix-Online/Secure Security Features User's Guide, Menlo Park, CA.
	17	C. E. Irvine, A multilevel file system for high assurance, Proceedings of the 1995 IEEE Symposium on Security and Privacy, p.78, May 08-10, 1995
	18	IRVINE, C. E., ACHESON,T.B.,AND THOMPSON, M. F. 1990. Building trust into a multilevel file system. In Proceedings of the 13th National Computer Security Conference Washington D.C.
	19	Sushil Jajodia , Vajayalakshmi Atluri, Alternative Correctness Criteria for Concurrent Execution of Transactions in Multilevel Secure Databases, Proceedings of the 1992 IEEE Symposium on Security and Privacy, p.216, May 04-06, 1992
	20	Sushil Jajodia , Luigi V. Mancini , Indrajit Ray, Secure locking protocols for multilevel database management systems, Proceedings of the tenth annual IFIP TC11/WG11.3 international conference on Database security: volume X : status and prospects: status and prospects, p.177-194, January 1997, Como, Italy
	21	JAJODIA, S., MANCINI, L., AND RAY, I. 1990. Multiversion concurrency control for multilevel secure database systems. In Proceedings of the IEEE Symposium on Security and Privacy.
	22	MAIMONE,W.T.AND GREENBERG, I. B. 1990. Single-level multiversion schedulers for multilevel secure database systems.In Proceedings of the 6th Annual Computer Security Applications Conference, 137-147.
	23	John McDermott , Sushil Jajodia, Orange locking: channel-free database concurrency control via locking, Results of the Sixth Working Conference of IFIP Working Group 11.3 on Database Security on Database security, VI : status and prospects: status and prospects, p.267-284, January 1993, Simon Fraser Univ., Vancouver, British Columbia, Canada
	24	J. E.B. Moss, Nested transactions: an approach to reliable distributed computing, Massachusetts Institute of Technology, Cambridge, MA, 1985
	25	Shankar Pal, A locking protocol for MLS databases providing support for long transactions, Proceedings of the ninth annual IFIP TC11 WG11.3 working conference on Database security IX : status and prospects: status and prospects, p.183-198, January 1996, Rennselaerville, New York, United States
	26	Ravi S. Sandhu, Lattice-Based Access Control Models, Computer, v.26 n.11, p.9-19, November 1993  [doi>10.1109/2.241422]
	27	SCHAEFER,M.A.AND WALSH, G. 1988. Lock/ix: On implementing Unix on the Loch TCB. In Proceedings of the 11th National Computer Security Conference, 17-20.
	28	Sybase Secure SQL Server Security Administrator's Guid, Emeryville, CA.
	29	Roshan K. Thomas , Ravi S. Sandhu, Towards a Unified Framework and Theory for Reasoning about Security and Correctness of Transactions in Multilevel databases, Proceedings of the IFIP WG11.3 Working Conference on Database Security VII, p.309-328, September 12-15, 1993
	30	Trusted Oracle Administrator's Guide. Redwood City, CA.

• Constructing reality Proceedings of the 11th annual international conference on Systems documentation
  Douglas A. Powell ,  Norman R. Ball ,  Mansel W. Griffiths
  
  
• Inferring constraints from multiple snapshots ACM Transactions on Graphics (TOG)   12, 4
  David Kurlander ,  Steven Feiner
  
  
• Data structures for quadtree approximation and compression Communications of the ACM   28, 9
  Hanan Samet
  
  
• A hierarchical single-key-lock access control using the Chinese remainder theorem Proceedings of the 1992 ACM/SIGAPP Symposium on Applied computing
  Kim S. Lee ,  Huizhu Lu ,  D. D. Fisher
  
  
• An intelligent component database for behavioral synthesis Proceedings of the 27th ACM/IEEE Design Automation Conference on
  Gwo-Dong Chen ,  Daniel D. Gajski