1. Data and Applications Security Developments and Directions Dr. Bhavani Thuraisingham The University of Texas at Dallas Security for Distributed Data Management September 2014

2. Outline l Distributed Database Systems - Architecture, Data Distribution, Functions l Security Issues - Discretionary Security, Multilevel Security l Secure Heterogeneous and Federated Systems l Single Sign-on and Identity Management l Assumption: Network is secure; focusing on securing the data

3. Distributed Architecture Communication Network Distributed Processor 1 DBMS 1 Data- base 1 Data- base 3 Data- base 2 DBMS 2 DBMS 3 Distributed Processor 2 Distributed Processor 3 Site 1 Site 2 Site 3

4. Data Distribution EMP1 SS#NameSalary 1John20 2Paul30 3James40 4Jill50 60 5Mary 6Jane70 D# 10 20 20 20 10 20 DnameD#MGR 10 30 40 Jane David Peter DEPT1 SITE 1 SITE 2 EMP2 SS#NameSalary 9Mathew 70 D# 50 Dname D#MGR 50 Math John Physics DEPT2 David 80 30 Peter9040 7 8 C. Sci. English French 20 Paul

5. Distributed Database Functions l Distributed Query Processing - Optimization techniques across the databases l Distributed Transaction Management - Techniques for distributed concurrency control and recovery l Distributed Metadata Management - Techniques for managing the distributed metadata l Distributed Security/Integrity Maintenance - Techniques for processing integrity constraints and enforcing access control rules across the databases

6. Secure Distributed Architecture

7. Discretionary Security Mechanism

8. Security Policy Integration

9. Views for Security

10. Secure Distributed Database Functions

11. Architecture for Multilevel Security

12. Multilevel Distributed Data Model

13. MLS/DDBMS Functions

14. Distributed Inference Controller

15. Interoperability of Heterogeneous Database Systems Database System A Database System B Network Database System C (Legacy) Transparent access to heterogeneous databases - both users and application programs; Query, Transaction processing (Relational) (Object- Oriented)

16. Technical Issues on the Interoperability of Heterogeneous Database Systems l Heterogeneity with respect to data models, schema, query processing, query languages, transaction management, semantics, integrity, and security policies l Federated database management - Collection of cooperating, autonomous, and possibly heterogeneous component database systems, each belonging to one or more federations l Interoperability based on client-server architectures

17. Federated Database Management Database System A Database System B Database System C Cooperating database systems yet maintaining some degree of autonomy Federation F1 Federation F2

18. Schema Integration and Transformation in a Federated Environment Adapted from Sheth and Larson, ACM Computing Surveys, September 1990 Component Schema for Component A Component Schema for Component B Component Schema for Component C Generic Schema for Component A Generic Schema for Component B Generic Schema for Component C Export Schema for Component A Export Schema I for Component B Export Schema for Component C Federated Schema for FDS - 1 Federated Schema for FDS - 2 External Schema 1.2Schema 2.1 External Schema 2.2 External Schema 1.1 Export Schema II for Component B External

19. Client-Server Architecture: Example Network Client from Vendor A Client from Vendor B Server from Vendor C Server from Vendor D Database

20. Security Issues l Transforming secure data models l Secure architectures: Heterogeneous and federated data management l Security impact on schema/data/policy integration l Incomparable/Overlapping security levels l Inference Control l Secure client-server computing

21. Transforming Secure Data Models EMP: Level = Secret SS#EnameSalary D# 1John20K10 2Paul30K20 3Mary40K20 l Class EMP is Secret l It has 3 instances: l John, Paul and Mary DEPT D#DnameMgr 10 Math Smith U 20PhysicsJones C Level l Class DEPT is Unclassified l It has 2 instances Math and Physics l Math is Unclassified l Physics is Confidential

22. Security Architecture: Heterogeneous data management

23. Security Architecture: Federated data management

24. Federated Data and Policy Management Export Data/Policy Component Data/Policy for Agency A Data/Policy for Federation Export Data/Policy Component Data/Policy for Agency C Component Data/Policy for Agency B Export Data/Policy

25. Incomparable Security Levels

26. Overlapping Security Levels

27. Inference Control

28. Secure Client-Server Computing

29. Federated Identity Management l Federated identity, or the ‘federation’ of identity, describes the technologies, standards and use-cases which serve to enable the portability of identity information across otherwise autonomous security domains. l The ultimate goal of identity federation is to enable users of one domain to securely access data or systems of another domain seamlessly, and without the need for completely redundant user administration. Identity federation comes in many flavors, including ‘user-controlled’ or ‘user-centric’ scenarios, as well as enterprise controlled or B2B scenarios. l Federation is enabled through the use of open industry standards and/or openly published specifications, such that multiple parties can achieve interoperability for common use cases. l Typical use-cases involve things such as cross-domain, web-based single sign-on, cross-domain user account provisioning, cross-domain entitlement management and cross-domain user attribute exchange.

30. Comments l Techniques for centralize data management have to be extended for a distributed/heterogeneous/federated environment l Access control enforced across databases l Inference control across databases l Web will continue to impact the development of secure distributed data managers l Network security is critical