Interval protection of confidential information in a database

Ram D. Gopal, Paulo B. Goes, Robert S. Garfinkel

Research output: Contribution to journalArticle

16 Scopus citations

Abstract

We deal with the question of how to maintain security of confidential information in a database while answering as many queries as possible. The database is assumed to operate in a query restriction (as opposed to perturbation) mode in which exact answers are given to those queries which, together with those already answered, will not compromise any confidential datum. Those which fail this criterion are not answered. We introduce the concept of interval disclosure where a datum is compromised if the answered queries provide enough information to establish that It is contained in a given interval even if the datum cannot be determined exactly. Models are presented for the problem of deciding whether to answer a query and three techniques, one based on linear programming, are developed and tested.

Original languageEnglish (US)
Pages (from-to)309-322
Number of pages14
JournalINFORMS Journal on Computing
Volume10
Issue number3
DOIs
StatePublished - Jan 1 1998
Externally publishedYes

Keywords

  • Database
  • Database security
  • Query processing
  • Query restriction
  • Security

ASJC Scopus subject areas

  • Software
  • Information Systems
  • Computer Science Applications
  • Management Science and Operations Research

Fingerprint Dive into the research topics of 'Interval protection of confidential information in a database'. Together they form a unique fingerprint.

  • Cite this