Data Element Security and Its Effects on File Segmentation.

The literature on physical database design in general, and on rile segmentation in particular, typically ignores any consideration of data security and the cost to enforce it. If records can be physically designed so that all data elements in a given record type have identical security restrictions for a given user, then data element level security enforcement can he transformed into the less costly rile level security enforcement for that user and file. Similarly, If all record types have identical security restrictions, file based security might be sufficient. This paper extends an earlier model for file segmentation to include security considerations. The extended model embeds the security measures into the logical file structure and exploits a four category taxonomy of security restriction types. The model is used to generalize the interaction between element level selective security and physical data- base design. [ABSTRACT FROM AUTHOR]