On the Correctness Criteria of Fine-Grained Access Control in Relational Databases
نویسندگان
چکیده
Databases are increasingly being used to store information covered by heterogeneous policies, which require support for access control with great flexibility. This has led to increasing interest in using fine-grained access control, where different cells in a relation may be governed by different access control rules. Although several proposals have been made to support fine-grained access control, there currently does not exist a formal notion of correctness regarding the query answering procedure. In this paper, we propose such a formal notion of correctness in fine-grained database access control, and discuss why existing approaches fall short in some circumstances. We then propose a labeling approach for masking unauthorized information and a query evaluation algorithm which better supports fine-grained access control. Finally, we implement our algorithm using query modification and evaluate its performance.
منابع مشابه
Fine Grained Access Control for Relational Databases by Abstract Interpretation
In this paper1, we propose an observation-based fine grained access control (OFGAC) mechanism where data are made accessible at various level of abstraction according to their sensitivity level. In this setting, unauthorized users are not able to infer the exact content of the data cell containing confidential information, while they are allowed to get partial information out of it, according t...
متن کاملSeminar Report Fine-grained Access Control in Databases
Today, there are countless terabytes of data processed by IT systems, and we store a measurable portion of that data in the relational database management systems (RDBMS). Access control in these IT systems, is one of the cornerstones of any Information Security Policy. The granularity of such access control can be on different levels, like on directories or folder level, database level, table ...
متن کاملXml Access Control in Native and Rdbms - Supported Xml Databases
As the eXtensible Markup Language (XML) has emerged as the de facto standard for storing and exchanging information in the Internet Age, the needs for efficient yet secure access of XML data naturally arise. It becomes increasingly important to be able to tailor information in XML data for various users and applications, while preserving confidentiality. In this dissertation, we ask how fine-gr...
متن کاملOptimization of ECMAP parameters in production of ultra-fine grained Al1050 strips using Grey relational analysis
Production of lightweight metals with a higher strength to weight ratio is always the main goal of researchers. In this article, equal channel multi angular pressing (ECMAP) process as one of the most appealing severe plastic deformation (SPD) methods on production of ultra-fine grained (UFG) materials studied. Two main routes A and C investigated by FEM and compared with each other from differ...
متن کاملFine-Grained Data Security in Virtual Organizations
Controlling the access to data based on user credentials is a fundamental part of database management systems. In most cases, the level at which information is controlled extends only to a certain level of granularity. In some scenarios, however, there is a requirement to control access at a more granular way allowing the users to see only the data they are supposed to see in a database table. ...
متن کامل