Transaction Serializability with Security in Heterogeneous Medical Database Systems / 대한의료정보학회지

ABSTRACT

The integrated management of medical data raised the efficiency of them and improved doctor' s diagnostic ability by processing correct data. Various medical information processing led out the development of new medical technology and is incurring huge changes for the medical examination and diagnosis. In medical database security, both serializability and security must be considered to maintain data consistency and prevent covert channel. In the security environments of heterogeneous medical database systems, the existing local autonomy and the security autonomy as a new constraint are required. This paper defines multilevel secure one-copy quasi-serializability (MLS/1QSR) necessary for concurrency control in heterogeneous medical database systems with replicated data to solve security problem among many objects of medical database systems. The proposed MLS/1QSR neither violates security autonomy nor establishes covert channel for transactions in heterogeneous medical database systems.