Controlled information sharing in collaborative distributed query processing

De Capitani di Vimercati, S.; Foresti, S.; Jajodia, S.; Paraboschi, S.; Samarati, P.

doi:10.1109/ICDCS.2008.62

We present a simple, yet powerful, approach for the specification and enforcement of authorizations regulating data release among data holders collaborating in a distributed computation, to ensure that query processing discloses only data whose release has been explicitly authorized. Data disclosure is captured by means of profiles, associated with each data computation, that describe the information carried by the result. We also present an algorithm that, given a query plan, determines whether it can be safely executed and produces a safe execution strategy. The main advantage of our approach is its simplicity that, without impacting expressiveness, makes it nicely interoperable with current solutions for collaborative computations in distributed database systems.

Controlled information sharing in collaborative distributed query processing / S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, P. Samarati - In: The 28. International conference on distributed computing systems : ICDCS '08 : 17-20 june 2008, Beijing, China : proceedings / [a cura di] [s.n.]. - Los Alamitos : Institute of electrical and electronics engineers, 2008. - ISBN 9780769531724. - pp. 303-310 (( Intervento presentato al 28. convegno International Conference on Distributed Computing Systems (ICDCS) tenutosi a Beijing, China nel 2008.

Controlled information sharing in collaborative distributed query processing

S. De Capitani di Vimercati^Primo;S. Foresti^Secondo;S. Jajodia;S. Paraboschi;P. Samarati^Ultimo

2008

Abstract

We present a simple, yet powerful, approach for the specification and enforcement of authorizations regulating data release among data holders collaborating in a distributed computation, to ensure that query processing discloses only data whose release has been explicitly authorized. Data disclosure is captured by means of profiles, associated with each data computation, that describe the information carried by the result. We also present an algorithm that, given a query plan, determines whether it can be safely executed and produces a safe execution strategy. The main advantage of our approach is its simplicity that, without impacting expressiveness, makes it nicely interoperable with current solutions for collaborative computations in distributed database systems.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
			Distributed databases ; Groupware ;   Information dissemination ; Query processing.
		
	Settori scientifico-disciplinari del contributo
	
			Settore INF/01 - Informatica
		
	DOI
	
			https://dx.doi.org/10.1109/ICDCS.2008.62
		
	Tipologia
	
			Book Part (author)
		
	Appare nelle tipologie:
	
			03 - Contributo in volume

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Pubblicazioni consigliate

Caricamento pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/48221

Citazioni

ND

22

3

IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca