Title :
On the Soundness Property for SQL Queries of Fine-grained Access Control in DBMSs
Author :
Shi, Jie ; Zhu, Hong ; Fu, Ge ; Jiang, Tao
Author_Institution :
Coll. of Comput. Sci. & Technol., Huazhong Univ. of Sci. & Technol., Wuhan, China
Abstract :
The fine-grained access control approaches in DBMSs should satisfy soundness property which requires the answer of a query returned by the approach under the control of fine-grained access control is consistent with the answer when there is no fine-grained access control. However, existing techniques cannot guarantee soundness property for all SQL queries. Therefore, for an approach, there is a practical need to state that, for which kinds of SQL queries, soundness property can be guaranteed by this approach. In this paper, we present our initial effort for this objective. We firstly proposed a new algorithm with query modification. Then, we refine, extend and enhance the theory about soundness property, and state that, for which kinds of SQL queries, the soundness property is guaranteed by the proposed algorithm. Finally, we implement the algorithm using query modification and performance evaluation has also been conducted, which indicates this approach is feasible.
Keywords :
SQL; authorisation; database management systems; query processing; DBMS; SQL query; fine-grained access control; query modification; soundness property; Access control; Computer science; Data security; Databases; Educational institutions; Information science; access control; database security; fine-grained access control;
Conference_Titel :
Computer and Information Science, 2009. ICIS 2009. Eighth IEEE/ACIS International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-0-7695-3641-5
DOI :
10.1109/ICIS.2009.21
