Authorizations in relational database management systems

Authors:
Elisa Bertino;Pierangela Samarati;Sushil Jajodia
Affiliations:
Dipartimento di Scienze dell'Informazione, Università degli, Studi di Milano, Via Comelico 39/41, 20135 Milano, Italy;Dipartimento di Scienze dell'Informazione, Università degli, Studi di Milano, Via Comelico 39/41, 20135 Milano, Italy;Center for Secure Information Systems and Department of Information and Software Systems Engineering, George Mason, University, Fairfax, VA
Venue:
CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
Year:
1993

Citing 7
Cited 16

The SeaView Security Model

IEEE Transactions on Software Engineering
A model of authorization for next-generation database systems

ACM Transactions on Database Systems (TODS)
On an authorization mechanism

ACM Transactions on Database Systems (TODS)
System R: relational approach to database management

ACM Transactions on Database Systems (TODS)
An authorization mechanism for a relational database system

ACM Transactions on Database Systems (TODS)
A history and evaluation of System R

Communications of the ACM
Views and Security in Distributed Database Management Systems

EDBT '88 Proceedings of the International Conference on Extending Database Technology: Advances in Database Technology

A temporal authorization model

CCS '94 Proceedings of the 2nd ACM Conference on Computer and communications security
A non-timestamped authorization model for data management systems

CCS '96 Proceedings of the 3rd ACM conference on Computer and communications security
A unified framework for enforcing multiple access control policies

SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
A discretionary access control model with temporal authorizations

NSPW '94 Proceedings of the 1994 workshop on New security paradigms
An access control model supporting periodicity constraints and temporal reasoning

ACM Transactions on Database Systems (TODS)
Flexible support for multiple access control policies

ACM Transactions on Database Systems (TODS)
An authorization model for temporal and derived data: securing information portals

ACM Transactions on Information and System Security (TISSEC)
A Temporal Access Control Mechanism for Database Systems

IEEE Transactions on Knowledge and Data Engineering
Constraints-based access control

Das'01 Proceedings of the fifteenth annual working conference on Database and application security
An Authorization Model for Geospatial Data

IEEE Transactions on Dependable and Secure Computing
Towards reasonability properties for access-control policy languages

Proceedings of the eleventh ACM symposium on Access control models and technologies
Flexible Resolution of Authorisation Conflicts in Distributed Systems

DSOM '08 Proceedings of the 19th IFIP/IEEE international workshop on Distributed Systems: Operations and Management: Managing Large-Scale Service Deployment
Supporting multiple access control policies in database systems

SP'96 Proceedings of the 1996 IEEE conference on Security and privacy
An OWL-Based approach for RBAC with negative authorization

KSEM'06 Proceedings of the First international conference on Knowledge Science, Engineering and Management
Specifying and reasoning about dynamic access-control policies

IJCAR'06 Proceedings of the Third international joint conference on Automated Reasoning
A semantic authorization model for pervasive healthcare

Journal of Network and Computer Applications

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper proposes two major extensions to the authorization model for System R relational database management system. The first extension concerns the revoke operation. The revised model provides for a new type of revoke operation, called noncascading revoke, in addition to the System R cascading revoke operation. Unlike cascading revoke, noncascading revoke operation does not recursively remove privileges from users. The second extension concerns negative authorization. The details related to its application are specified in the paper.