Flexible security policies in SQL

Authors:
Steve Barker;Arnon Rosenthal
Affiliations:
Cavendish School of Computer Science, University of Westminster, London, UK;The MITRE Corporation, 202 Burlington Road, Bedford, MA
Venue:
Das'01 Proceedings of the fifteenth annual working conference on Database and application security
Year:
2001

Citing 12
Cited 4

Magic sets and other strange ways to implement logic programs (extended abstract)

PODS '86 Proceedings of the fifth ACM SIGACT-SIGMOD symposium on Principles of database systems
A guide to the SQL standard

A guide to the SQL standard
Foundations of logic programming; (2nd extended ed.)

Foundations of logic programming; (2nd extended ed.)
Principles of database and knowledge-base systems, Vol. I

Principles of database and knowledge-base systems, Vol. I
Database security

Database security
Role-Based Access Control Models

Computer
An introduction to database systems (7th ed.)

An introduction to database systems (7th ed.)
Implementation of integrity constraints and views by query modification

SIGMOD '75 Proceedings of the 1975 ACM SIGMOD international conference on Management of data
Foundations of Databases: The Logical Level

Foundations of Databases: The Logical Level
Extending SQL's Grant and Revoke Operations, to Limit and Reactivate Privileges

Proceedings of the IFIP TC11/ WG11.3 Fourteenth Annual Working Conference on Database Security: Data and Application Security, Development and Directions
Flexible security policies in SQL

Das'01 Proceedings of the fifteenth annual working conference on Database and application security
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy

Protecting deductive databases from unauthorized retrieval and update requests

Data & Knowledge Engineering - Data and applications security
Flexible security policies in SQL

Das'01 Proceedings of the fifteenth annual working conference on Database and application security
Flexible access control policy specification with constraint logic programming

ACM Transactions on Information and System Security (TISSEC)
Using uml to visualize role-based access control constraints

Proceedings of the ninth ACM symposium on Access control models and technologies

Quantified Score

Hi-index	0.02

Visualization

Abstract

We show how a wide variety of role-based access control policies may be formally specified in the stratified subset of clause form logic. We then show how these formal specifications may be automatically translated into a small subset of SQL to be used to seamlessly protect an SQL database from unauthorized read and update requests made by authenticated users. We demonstrate the power of our approach by showing how a variety of access control policies can be represented.