The STUDIA UNIVERSITATIS BABEĹž-BOLYAI issue article summary

The summary of the selected article appears at the bottom of the page. In order to get back to the contents of the issue this article belongs to you have to access the link from the title. In order to see all the articles of the archive which have as author/co-author one of the authors mentioned below, you have to access the link from the author's name.

 
       
         
    STUDIA INFORMATICA - Issue no. 1 / 2006  
         
  Article:   A FRAMEWORK PROPOSAL FOR FINE GRAINED ACCESS CONTROL.

Authors:  CIPRIAN COSTA.
 
       
         
  Abstract:  One of the main concerns in database security is confining a user to a specific set of the existing data. Current common DBMS implementations usually rely on specifying the columns a user might or might not see. The more intricate problem of restricting the user to several specified partitions of the data is usually left to the programmers and implemented through views (either simple or parameterized). This has long been acknowledged by the research community and the concept of query rewriting and ”authorization transparent” queries has been introduced and discussed in great detail [1, 2, 4]. The scope of this paper is to introduce a framework for expressing the rules used in access control. The novelties introduced by this framework are: ability to choose between the type of access control (rewriting, checking), ability to use the structure of the query as input for the access control routines, ability to specify access control routines as a set of rules connecting specific users with specific constraints. The framework is part of the larger effort of defining AQL - a query language based on a code generation framework [5].  
         
     
         
         
      Back to previous page