Database Access Application-Driven versus Data-Driven

April, 2015
IDA document: D-5403
FFRDC: Systems and Analyses Center
Division: Information Technology and Systems Division
William R. Simpson See more authors
A multitude of commercial applications rely on Data Base Management Systems (DBMS) that provide an organized collection of data; for example, modelling the availability of flights and seating in a way that supports reservation and sales of air transportation. DBMSs are specially designed software applications that interact with other applications and users to capture and analyze data. A general-purpose DBMS is a software system designed to allow the definition, creation, querying, update, and administration of databases. For the purposes of this paper, we assume that the database is front-ended by a web service for database access and query. This paper discusses the current approach to database access and privilege by web services and the changes that are required by a high assurance end-to-end approach. The latter rely on a well-formed security paradigm for the enterprise.