TITLE: Achieving Database Privacy through Virtual Updates

Abstract:

Privacy concerns over sensitive data have become important in information systems today. In order to protect the privacy, certain users should have access to only certain portions of a database. Our approach addresses the problem on a specification of what the user should not be able to access. This protected information is specified in terms of secrecy views. The basic idea is that a user should get an empty answer if he poses a query that corresponds to the definition of a secrecy view. Moreover, a user should not be able to obtain tuples in them by combining information obtained through other queries.