Implementing Reflective Access Control in SQL

Lars E. Olson, Carl A. Gunter, William R. Cook and Marianne Winslett

View Related Documents

Journal Article
Modeling contextual security policies
Frédéric Cuppens and Nora Cuppens-Boulahia
International Journal of Information Security, 2008, Volume 7, Number 4, Pages 285-305
- Download PDF (424.4 KB)
Book Chapter
Analysis and Run-Time Verification of Dynamic Security Policies
Helge Janicke, François Siewe, Kevin Jones, Antonio Cau and Hussein Zedan
Lecture Notes in Computer Science, 2006, Volume 3890, Defence Applications of Multi-Agent Systems, Pages 92-103
- Download PDF (627.6 KB)
Book Chapter
A high level language for conventional access control models
Yun Bai and Vijay Varadharajan
Lecture Notes in Computer Science, 1998, Volume 1438, Information Security and Privacy, Pages 273-283
- Download PDF (543.9 KB)
Book Chapter
A Presentation of Access Control Methods
Anne V. D. M. Kayem, Selim G. Akl and Patrick Martin
Advances in Information Security, 1, Volume 48, Adaptive Cryptographic Access Control, Pages 11-40
- Download PDF (1,019.3 KB)
Book Chapter
Access Control Policy Models for XML
Michiharu Kudo and Naizhen Qi
Advances in Information Security, 1, Volume 33, Secure Data Management in Decentralized Systems, Part II, Pages 97-126
- Download PDF (1.6 MB)
Book Chapter
User-Managed Access Control for Health Care Systems
Amir H. Chinaei and Frank Wm. Tompa
Lecture Notes in Computer Science, 2005, Volume 3674, Secure Data Management, Pages 63-72
- Download PDF (190.7 KB)
Book Chapter
Optimization of Queries Invoking Views by Query Tail Absorption
Hanna Kozankiewicz, Krzysztof Stencel and Kazimierz Subieta
Lecture Notes in Computer Science, 2006, Volume 4243, Advances in Information Systems, Pages 129-138
- Download PDF (190.9 KB)
Book Chapter
XML-Based Declarative Access Control
Robert Steele, William Gardner, Tharam S. Dillon and Abdelkarim Erradi
Lecture Notes in Computer Science, 2005, Volume 3381, SOFSEM 2005: Theory and Practice of Computer Science, Pages 310-319
- Download PDF (343.4 KB)
Book Chapter
Safety Problems in Access Control with Temporal Constraints
Philippe Balbiani and Fahima Cheikh
Lecture Notes in Computer Science, 2005, Volume 3685, Computer Network Security, Pages 165-178
- Download PDF (421.7 KB)
Book Chapter
XML in SQL Server 2005
2007, Pro .NET 2.0 XML, Pages 303-342
- Download PDF (1.2 MB)

Abstract

Reflective Database Access Control (RDBAC) is a model in which a database privilege is expressed as a database query itself, rather than as a static privilege in an access control matrix. RDBAC aids the management of database access controls by improving the expressiveness of policies. The Transaction Datalog language provides a powerful syntax and semantics for expressing RDBAC policies, however there is no efficient implementation of this language for practical database systems. We demonstrate a strategy for compiling policies in Transaction Datalog into standard SQL views that enforce the policies, including overcoming significant differences in semantics between the languages in handling side-effects and evaluation order. We also report the results of evaluating the performance of these views compared to policies enforced by access control matrices. This implementation demonstrates the practical feasibility of RDBAC, and suggests a rich field of further research.

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

Implementing Reflective Access Control in SQL

View Related Documents

Abstract

Fulltext Preview