Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
SIGMOD
2004
ACM
2004
ACM
Extending Query Rewriting Techniques for Fine-Grained Access Control
Current day database applications, with large numbers of users, require fine-grained access control mechanisms, at the level of individual tuples, not just entire relations/views, to control which parts of the data can be accessed by each user. Fine-grained access control is often enforced in the application code, which has numerous drawbacks; these can be avoided by specifying/enforcing access control at the database level. We present a novel fine-grained access control model based on authorization views that allows "authorizationtransparent" querying; that is, user queries can be phrased in terms of the database relations, and are valid if they can be answered using only the information contained in these authorization views. We extend earlier work on authorization-transparent querying by introducing a new notion of validity, conditional validity. We give a powerful set of inference rules to check for query validity. We demonstrate the practicality of our techniques by des...
Real-time TrafficAccess Control Checks | Access Control Mechanisms | Database | Fine-grained Access Control | SIGMOD 2004 |
Related Content
| Added | 08 Dec 2009 |
| Updated | 08 Dec 2009 |
| Type | Conference |
| Year | 2004 |
| Where | SIGMOD |
| Authors | Shariq Rizvi, Alberto O. Mendelzon, S. Sudarshan, Prasan Roy |
Comments (0)
Researcher Info
|
