Role-Based Access Control Features in Commercial Database Management Systems
نویسندگان
چکیده
This paper analyzes and compares role-based access control (RBAC) features supported in the most recent versions of three popular commercial database management systems: Informix Online Dynamic Server Version 7.2, Oracle Enterprise Server Version 8.0 and Sybase Adaptive Server Release 11.5. We categorize RBAC features under three broad areas: user role assignment, support for role relationships and constraints, and assignable privileges. Our fnding is that these products provide a sound basis for implementing the basic features of RBAC, although there are signifcant diferences. In particular, Informix restricts users to a single active role at any time, while Oracle and Sybase allow m ultiple roles to be activated simultaneously as per the user's selection. All three provide support for role hierarchies, but Sybase is the only one to directly support mutual exclusion of roles.
منابع مشابه
Policy-Driven Role-Based Database Access Control
In this paper, firstly, we point out that access control mechanisms are not suitable in existing commercial Relational Data Base Management Systems (RDBMS). Secondly, the idea of Policy-Driven Role-Based Database Access Control (PDRBDAC) is proposed. Thirdly, the issue of multiple inheritance in a role hierarchy is discussed. Finally, a PROLOG interpreting algorithm for dealing with it is descr...
متن کاملA Policy Management Tool for Fine-Grained Database Access Control
Database access control plays a central role in ensuring authorized access to sensitive information. As cross-organization information sharing becomes a must for the collaboration among corporations and governmental agencies, table-level or column-level database access control is no longer adequate. View-based approaches, on the other hand, require separate views for potentially large number of...
متن کاملCore Role Based Access Control (RBAC) mechanism for MySQL
RBAC or Role-Based Access Control is an approach to restrict system access to authorized users and help in implementing a secure access control for larger databases. MySQL is a popular open source relational database management system (RDBMS) which currently implements MAC and DAC access control mechanisms. We extend the access control policies in MySQL by adding the Core RBAC functionality to it.
متن کاملA FAMILY OF MODELS FOR RULE-BASED USER-ROLE ASSIGNMENT by
A FAMILY OF MODELS FOR RULE-BASED USER-ROLE ASSIGNMENT Mohammad Abdullah Al-Kahtani, Ph.D. George Mason University, 2003 Dissertation Director: Dr. Ravi Sandhu Conventional role based access control (RBAC) was designed with closed-enterprise environment in mind where a security officer(s) manually assigns users to roles. However, today, an increasing number of service-providing enterprises make...
متن کاملAn Authorization Framework for Database Systems
Today, data plays an essential role in all levels of human life, from personal cell phones to medical, educational, military and government agencies. In such circumstances, the rate of cyber-attacks is also increasing. According to official reports, data breaches exposed 4.1 billion records in the first half of 2019. An information system consists of several components, which one of the most im...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 1998