DocumentCode :
2731594
Title :
Fine Grained Authorization Through Predicated Grants
Author :
Chaudhuri, Swarat ; Dutta, Tapas ; Sudarshan, S.
Author_Institution :
Microsoft Corp., Redmond, WA, USA
fYear :
2007
fDate :
15-20 April 2007
Firstpage :
1174
Lastpage :
1183
Abstract :
Authorization in SQL is currently at the level of tables or columns. Many applications need a finer level of control. We propose a model for fine-grained authorization based on adding predicates to authorization grants. Our model supports predicated authorization to specific columns, cell-level authorization with nullification, authorization for function/procedure execution, and grants with grant option. Our model also incorporates other novel features, such as query defined user groups, and authorization groups, which are designed to simplify administration of authorizations. Our model is designed to be a strict generalization of the current SQL authorization mechanism.
Keywords :
SQL; authorisation; SQL; authorization grants; cell-level authorization; fine grained authorization; function/procedure execution; grant option; predicated grants; Access control; Aggregates; Authorization; Data security; Databases; Human resource management; Programming profession; Proposals; Protection; Remuneration;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Data Engineering, 2007. ICDE 2007. IEEE 23rd International Conference on
Conference_Location :
Istanbul
Print_ISBN :
1-4244-0802-4
Type :
conf
DOI :
10.1109/ICDE.2007.368976
Filename :
4221766
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2731594
بازگشت