ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Intentional resolution of privacy protection in database systems
Full text PdfPdf (1.34 MB)
Source
Communications of the ACM archive
Volume 19 ,  Issue 3  (March 1976) table of contents
Pages: 148 - 159  
Year of Publication: 1976
ISSN:0001-0782
Author
Naftaly Minsky  Rutgers Univ., New Brunswick, NJ
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 22,   Citation Count: 7
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/360018.360027
What is a DOI?

ABSTRACT

Traditionally, privacy protection in database systems is understood to be the control over what information a given user can get from a database. This paper is concerned with another, independent, dimension of privacy protection, the control over what a user is allowed to do with a piece of information supplied to him by the database. The ability to condition the supply of information on its intended use is called here “intentional resolution” of privacy protection. The practical importance of intentional resolution is demonstrated by several examples, and its realization is discussed. It is shown that intentional resolution can be achieved, but that it involves a radical change from the traditional approach to the process of user-database interaction. In particular, it appears to be necessary for the database to impose a certain amount of control over the internal behavior of users' programs which interact with it. A model for user-database interaction which admits such a control is developed.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
CODASYL Data Base Task Group (DBTG) Report, April 1971. (Available from ACM.)
2
N. Minsky, On interaction with data bases, Proceedings of the 1974 ACM SIGFIDET (now SIGMOD) workshop on Data description, access and control, p.51-62, May 01-03, 1974, Ann Arbor, Michigan  [doi>10.1145/800296.811504]
 
3
Summers, R.C., Coleman, C.D., and Fernandez, E.B. A programming language approach to secure data base access. IBM Tech. Rep. G320-2662, May 1974.
4
R. W. Conway , W. L. Maxwell , H. L. Morgan, On the implementation of security measures in information systems, Communications of the ACM, v.15 n.4, p.211-220, April 1972  [doi>10.1145/361284.361287]
5
W. Wulf , E. Cohen , W. Corwin , A. Jones , R. Levin , C. Pierson , F. Pollack, HYDRA: the kernel of a multiprocessor operating system, Communications of the ACM, v.17 n.6, p.337-345, June 1974  [doi>10.1145/355616.364017]
 
6
Codd, E. F. Relational completeness of data base sublanguage. Proc. Courant Institute Symp. on Data Base Systems, 1971, pp. 65-98.
7
Butler W. Lampson, A note on the confinement problem, Communications of the ACM, v.16 n.10, p.613-615, Oct. 1973  [doi>10.1145/362375.362389]
8
Naftaly Minsky, Another look at data-bases, ACM SIGMOD Record, v.6 n.4, p.9-17, 1974  [doi>10.1145/983082.983084]
 
9
Owens, R. C. Jr. Evaluation of access authorization for on line data management systems. ACM SIGFIDET Workshop, Nov. 1971, pp. 263-278.
 
10
Minsky, N. Protection of data bases, and the process of user-DB interaction. Tech. Rep. SOSAP-TR-11, Computer Sci. Dep., Rutgers U., 1974.
11
Barbara Liskov , Stephen Zilles, Programming with abstract data types, Proceedings of the ACM SIGPLAN symposium on Very high level languages, p.50-59, March 28-29, 1974, Santa Monica, California, United States

CITED BY  7
George I. Davida , David L. Wells , John B. Kam, A database encryption system with subkeys, ACM Transactions on Database Systems (TODS), v.6 n.2, p.312-328, June 1981
Naftaly H. Minsky, Locality in software systems, Proceedings of the 10th ACM SIGACT-SIGPLAN symposium on Principles of programming languages, p.299-312, January 24-26, 1983, Austin, Texas
Gultekin Özsoyoglu , Z. Meral Özsoyoglu, Features of a system for statistical databases, Proceedings of the 2nd international workshop on Proceedings of the Second International Workshop on Statistical Database Management, p.9-18, September 27-29, 1983, Los Altos, California
Herbert Weber, A software engineering view of data base systems, Proceedings of the fourth international conference on Very Large Data Bases, p.36-51, September 13-15, 1978, West Berlin, Germany
Rainer Hüber , Peter C. Lockemann, Information protection by method base systems, Proceedings of the fourth international conference on Very Large Data Bases, p.420-426, September 13-15, 1978, West Berlin, Germany
Charles R. Young, A security policy for a profile-oriented operating system, Proceedings of the May 4-7, 1981, national computer conference, May 04-07, 1981, Chicago, Illinois
G. F. Heyne , C. J. Daniel, Design techniques for a user controlled DB/DC system, IBM Systems Journal, v.16 n.4, p.344-362, December 1977

INDEX TERMS

Keywords:
intentional resolution of privacy, interaction with databases, privacy, protection in databases, protection in programming languages, security

Collaborative Colleagues:
Naftaly Minsky: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player