Database Reference
In-Depth Information
Chapter 15
Security in Data Warehouses
Edgar R. Weippl
Secure Business Austria, Austria
ABSTRACT
The last several years have been characterized by global companies building up massive databases
containing computer users' search queries and sites visited; government agencies accruing sensitive
data and extrapolating knowledge from uncertain data with little incentive to provide citizens ways of
correcting false data; and individuals who can easily combine publicly available data to derive informa-
tion that - in former times - was not so readily accessible. Security in data warehouses becomes more
important as reliable and appropriate security mechanisms are required to achieve the desired level of
privacy protection.
INTRODUCTION
Avizienis (2004) defines
confidentiality
as the
absence of unauthorized disclosure of informa-
tion,
integrity
as the absence of improper system
alterations and
availability
as readiness for correct
service.
Landwehr (2001) defines how the etymological
roots of the term “secure” are found in “se” which
means “without,” or “apart from,” and “cure,” i.e.
“to care for,” or “to be concerned about”.
While there are many definitions of the primary
requirements of security, the classical requirements
are summarized by the acronym CIA. CIA is the acro-
nym for confidentiality, integrity, and availability.All
other security requirements such as non-repudiation
can be traced back to these three basic properties.
•
Dependability
is a broader concept that en-
compasses all primary aspects of security
save confidentiality, and, in addition.
•
Reliability
, which refers to the continuity of
correct service.
•
Safety
, defined as the absence of catastrophic
consequences for user(s) and environment.
Search WWH ::
Custom Search