An architecture for regulatory compliant database management

Soumyadeb Mitra, Marianne Winslett, Richard T. Snodgrass, Shashank Yaduvanshi, Sumedh Ambokar

Research output: Chapter in Book/Report/Conference proceedingConference contribution

6 Scopus citations

Abstract

Spurred by financial scandals and privacy concerns, governments worldwide have moved to ensure confidence in digital records by regulating their retention and deletion. These requirements have led to a huge market for compliance storage servers, which ensure that data are not shredded or altered before the end of their mandatory retention period. These servers preserve unstructured and semi-structured data at a file-level granularity: email, spreadsheets, reports, instant messages. In this paper, we extend this level of protection to structured data residing in relational databases. We propose a compliant DBMS architecture and two refinements that illustrate the additional security that one can gain with only a slight performance penalty, with almost no modifications to the DBMS kernel. We evaluate our proposed architecture through experiments with TPC-C on a high-performance DBMS, and show that the runtime overhead for transaction processing is approximately 10% in typical configurations.

Original languageEnglish (US)
Title of host publicationProceedings - 25th IEEE International Conference on Data Engineering, ICDE 2009
Pages162-173
Number of pages12
DOIs
StatePublished - Jul 8 2009
Event25th IEEE International Conference on Data Engineering, ICDE 2009 - Shanghai, China
Duration: Mar 29 2009Apr 2 2009

Publication series

NameProceedings - International Conference on Data Engineering
ISSN (Print)1084-4627

Other

Other25th IEEE International Conference on Data Engineering, ICDE 2009
CountryChina
CityShanghai
Period3/29/094/2/09

ASJC Scopus subject areas

  • Software
  • Signal Processing
  • Information Systems

Fingerprint Dive into the research topics of 'An architecture for regulatory compliant database management'. Together they form a unique fingerprint.

  • Cite this

    Mitra, S., Winslett, M., Snodgrass, R. T., Yaduvanshi, S., & Ambokar, S. (2009). An architecture for regulatory compliant database management. In Proceedings - 25th IEEE International Conference on Data Engineering, ICDE 2009 (pp. 162-173). [4812400] (Proceedings - International Conference on Data Engineering). https://doi.org/10.1109/ICDE.2009.69