ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Authorizations in relational database management systems
Full text PdfPdf (917 KB)
Source Conference on Computer and Communications Security archive
Proceedings of the 1st ACM conference on Computer and communications security table of contents
Fairfax, Virginia, United States
Pages: 130 - 139  
Year of Publication: 1993
ISBN:0-89791-629-8
Authors
Elisa Bertino  Dipartimento di Scienze dell'Informazione, Università degli, Studi di Milano, Via Comelico 39/41, 20135 Milano, Italy
Pierangela Samarati  Dipartimento di Scienze dell'Informazione, Università degli, Studi di Milano, Via Comelico 39/41, 20135 Milano, Italy
Sushil Jajodia  Center for Secure Information Systems and Department of Information and Software Systems Engineering, George Mason, University, Fairfax, VA
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 7,   Downloads (12 Months): 44,   Citation Count: 11
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/168588.168605
What is a DOI?

ABSTRACT

This paper proposes two major extensions to the authorization model for System R relational database management system. The first extension concerns the revoke operation. The revised model provides for a new type of revoke operation, called noncascading revoke, in addition to the System R cascading revoke operation. Unlike cascading revoke, noncascading revoke operation does not recursively remove privileges from users. The second extension concerns negative authorization. The details related to its application are specified in the paper.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

1
M. M. Astrahan , M. W. Blasgen , D. D. Chamberlin , K. P. Eswaran , J. N. Gray , P. P. Griffiths , W. F. King , R. A. Lorie , P. R. McJones , J. W. Mehl , G. R. Putzolu , I. L. Traiger , B. W. Wade , V. Watson, System R: relational approach to database management, ACM Transactions on Database Systems (TODS), v.1 n.2, p.97-137, June 1976  [doi>10.1145/320455.320457]
 
2
Elisa Bertino , Laura M. Haas, Views and Security in Distributed Database Management Systems, Proceedings of the International Conference on Extending Database Technology: Advances in Database Technology, p.155-169, March 14-18, 1988
3
Donald D. Chamberlin , Morton M. Astrahan , Michael W. Blasgen , James N. Gray , W. Frank King , Bruce G. Lindsay , Raymond Lorie , James W. Mehl , Thomas G. Price , Franco Putzolu , Patricia Griffiths Selinger , Mario Schkolnick , Donald R. Slutz , Irving L. Traiger , Bradford W. Wade , Robert A. Yost, A history and evaluation of System R, Communications of the ACM, v.24 n.10, p.632-646, Oct. 1981  [doi>10.1145/358769.358784]
 
4
DEPARTMENT OF DEFENSE, Trusted computer system evaluation criteria, DoD 5200.28-STD, Dec. 1985
5
Ronald Fagin, On an authorization mechanism, ACM Transactions on Database Systems (TODS), v.3 n.3, p.310-319, Sept. 1978  [doi>10.1145/320263.320288]
6
Patricia P. Griffiths , Bradford W. Wade, An authorization mechanism for a relational database system, ACM Transactions on Database Systems (TODS), v.1 n.3, p.242-255, Sept. 1976  [doi>10.1145/320473.320482]
 
7
MELTON, JIM, ED., ANSI X3H2- 90-309, "(ISO/ANSI working draft) Database Language SQL2," August 1990.
8
Fausto Rabitti , Elisa Bertino , Won Kim , Darrell Woelk, A model of authorization for next-generation database systems, ACM Transactions on Database Systems (TODS), v.16 n.1, p.88-131, March 1991  [doi>10.1145/103140.103144]
 
9
T. F. Lunt , D. E. Denning , R. R. Schell , M. Heckman , W. R. Shockley, The SeaView Security Model, IEEE Transactions on Software Engineering, v.16 n.6, p.593-607, June 1990  [doi>10.1109/32.55088]
 
10
SrLINGER, P.G., "Authorizations and views," in Distributed Data Bases, I.W. Draffan and F. Pook eds., Cambridge University Press, Cambridge 1980
 
11
P. F. WILMS AND B. G. LINSDAY, "A database authorization mechanism supporting individual and group authorization," in Distributed Database Systems, R.P. van de Riet and W. Litwin, eds., North-Holland, 1982, pp. 273-292.

CITED BY  11
Elisa Bertino , Sushil Jajodia , Pierangela Samarati, A non-timestamped authorization model for data management systems, Proceedings of the 3rd ACM conference on Computer and communications security, p.169-178, March 14-15, 1996, New Delhi, India
Sushil Jajodia , Pierangela Samarati , V. S. Subrahmanian , Eliza Bertino, A unified framework for enforcing multiple access control policies, ACM SIGMOD Record, v.26 n.2, p.474-485, June 1997
Elisa Bertino , Claudio Bettini , Elena Ferrari , Pierangela Samarati, An access control model supporting periodicity constraints and temporal reasoning, ACM Transactions on Database Systems (TODS), v.23 n.3, p.231-285, Sept. 1998
Elisa Bertino , Claudio Bettini , Pierangela Samarati, A temporal authorization model, Proceedings of the 2nd ACM Conference on Computer and communications security, p.126-135, November 1994, Fairfax, Virginia, United States
Vijayalakshmi Atluri , Avigdor Gal, An authorization model for temporal and derived data: securing information portals, ACM Transactions on Information and System Security (TISSEC), v.5 n.1, p.62-94, February 2002
Sushil Jajodia , Pierangela Samarati , Maria Luisa Sapino , V. S. Subrahmanian, Flexible support for multiple access control policies, ACM Transactions on Database Systems (TODS), v.26 n.2, p.214-260, June 2001
Wee Yeh Tan, Constraints-based access control, Proceedings of the fifteenth annual working conference on Database and application security, p.31-44, July 15-18, 2001, Niagara, Ontario, Canada
Elisa Bertino , Claudio Bettini , Elena Ferrari , Pierangela Samarati, A Temporal Access Control Mechanism for Database Systems, IEEE Transactions on Knowledge and Data Engineering, v.8 n.1, p.67-80, February 1996
Elisa Bertino , Claudio Bettini , Pierangela Samarati, A discretionary access control model with temporal authorizations, Proceedings of the 1994 workshop on New security paradigms, p.102-107, August 1994, Little Compton, Rhode Island, United States
Vijayalakshmi Atluri , Soon Ae Chun, An Authorization Model for Geospatial Data, IEEE Transactions on Dependable and Secure Computing, v.1 n.4, p.238-254, October 2004
Michael Carl Tschantz , Shriram Krishnamurthi, Towards reasonability properties for access-control policy languages, Proceedings of the eleventh ACM symposium on Access control models and technologies, June 07-09, 2006, Lake Tahoe, California, USA

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.1 Logical Design
          Subjects: Data models


General Terms:
Algorithms, Design, Security, Theory

Collaborative Colleagues:
Elisa Bertino: colleagues
Pierangela Samarati: colleagues
Sushil Jajodia: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player