StreamShield

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

StreamShield: a stream-centric approach towards security and privacy in data stream environments

Full text

Pdf (468 KB)

Source

International Conference on Management of Data archive
Proceedings of the 35th SIGMOD international conference on Management of data table of contents

Providence, Rhode Island, USA

DEMONSTRATION SESSION: Demonstration session: group A table of contents

Pages 1027-1030

Year of Publication: 2009

ISBN:978-1-60558-551-2

Authors

Rimma V. Nehme	Purdue University, West Lafayette, IN, USA
Hyo-Sang Lim	Purdue University, West Lafayette, IN, USA
Elisa Bertino	Purdue University, West Lafayette, IN, USA
Elke A. Rundensteiner	Worcester Polytechnic Institute, Worcester, MA, USA

Sponsors

ACM: Association for Computing Machinery
SIGMOD: ACM Special Interest Group on Management of Data

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 30, Downloads (12 Months): 110, Citation Count: 0

Additional Information:

abstract references index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1559845.1559972 What is a DOI?

ABSTRACT

We propose to demonstrate the StreamShield, a system designed to address the problem of security and privacy in the context of Data Stream Management Systems (DSMSs). In StreamShield, continuous access control is enforced by taking a novel "stream-centric" approach towards security. Security policies are not persistently stored on the server, but rather are depicted by security metadata, called "security punctuations", and get embedded into streams together with the data. We distinguish between two types of security punctuations: (1) the "data security punctuations" (dsps) describing the data-side security policies, and (2) the "query security punctuations" (qsps) representing the query-side security policies. The advantages of such stream-centric security model include flexibility, dynamicity and speed of enforcement. Furthermore, DSMSs can adapt to not only data-related but also to security-related selectivities, which helps reduce the waste of resources, when few subjects have access to streaming data.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Amol Deshpande , Zachary Ives , Vijayshankar Raman, Adaptive query processing, Foundations and Trends in Databases, v.1 n.1, p.1-140, January 2007 [doi>10.1561/1900000001]
	2	Matthew A. Bishop, The Art and Science of Computer Security, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 2002
	3	Bright Kite. http://brightkite.com/.
	4	Distributed Stream Integration. http://www.cis.upenn.edu/ zives/stream--integration/.
	5	Rimma V. Nehme , Elke A. Rundensteiner , Elisa Bertino, A Security Punctuation Framework for Enforcing Access Control on Streaming Data, Proceedings of the 2008 IEEE 24th International Conference on Data Engineering, p.406-415, April 07-12, 2008 [doi>10.1109/ICDE.2008.4497449]
	6	Ravi Sandhu , David Ferraiolo , Richard Kuhn, The NIST model for role-based access control: towards a unified standard, Proceedings of the fifth ACM workshop on Role-based access control, p.47-63, July 26-28, 2000, Berlin, Germany [doi>10.1145/344287.344301]
	7	Timothy M. Sutherland , Bin Liu , Mariana Jbantova , Elke A. Rundensteiner, D-CAPE: distributed and self-tuned continuous query processing, Proceedings of the 14th ACM international conference on Information and knowledge management, October 31-November 05, 2005, Bremen, Germany [doi>10.1145/1099554.1099595]