Auditing a Batch of SQL Queries

14 years 5 months ago

Download i.stanford.edu

In this paper, we study the problem of auditing a batch of SQL queries: given a set of SQL queries that have been posed over a database, determine whether some subset of these queries have revealed private information about an individual or group of individuals. In [2], the authors studied the problem of determining whether any single SQL query in isolation revealed information forbidden by the database system’s data disclosure policies. In this paper, we extend this work to the problem of auditing a batch of SQL queries. We deﬁne two diﬀerent notions of auditing - semantic auditing and syntactic auditing - and show that while syntactic auditing seems more desirable, it is in fact NP-hard to achieve. The problem of semantic auditing of a batch of SQL queries is, however, tractable and we give a polynomial time algorithm for this purpose.

Rajeev Motwani, Shubha U. Nabar, Dilys Thomas

Real-time Traffic

Auditing | Database | ICDE 2007 | Semantic Auditing | SQL Queries |

claim paper

Post Info
More Details (n/a)

Added	03 Jun 2010
Updated	03 Jun 2010
Type	Conference
Year	2007
Where	ICDE
Authors	Rajeev Motwani, Shubha U. Nabar, Dilys Thomas

Comments (0)

Sciweavers

Auditing a Batch of SQL Queries

Auditing | Database | ICDE 2007 | Semantic Auditing | SQL Queries |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers