Abstracting and Refining Authorization in SQL

12 years 5 months ago
Abstracting and Refining Authorization in SQL
ing and Refining Authorization in SQL Arnon Rosenthal, Edward Sciore1 The SQL standard specifies authorization via a large set of rather opaque rules, which are difficult to understand and dangerous to change. To make the model easier to work with, we formalize the implicit principles behind SQL authorization. We then discuss two extensions, for explicit metadata privileges and general privilege inference on derived objects. Although these are quite simple and easily implemented, we show how together, they help solve several administrative problems with existing SQL security. This sort of ion is also an important step towards having DBMSs that simultaneously support security policies over SQL, XML, RDF, and other forms of data.
Arnon Rosenthal, Edward Sciore
Added 02 Jul 2010
Updated 02 Jul 2010
Type Conference
Year 2004
Where SDMW
Authors Arnon Rosenthal, Edward Sciore
Comments (0)