A Unified Network Security and Fine-Grained Database Access Control Model

Author

Pan, Leon

Author_Institution

Dept. of Comput. Inf. Technol. & Graphics, Purdue Univ. Calumet, Hammond, IN, USA

Volume

1

fYear

2009

fDate

22-24 May 2009

Firstpage

265

Lastpage

269

Abstract

With the development of Internet and Intranet, Web and distributed databases have been used more and more widely. It is important to properly handle network and Web database security issues including authentication, denial of service, and fine-grained access control. When database access control and the network security are addressed separately, the security systems are not optimized sufficiently as a whole. This paper propose a method of integrating network security with criterion based access control to handle network security and the fine-grained Web database access control simultaneously. To improve efficiency, the model adopts two step access controls. The first preliminary access control is combined with the firewall function, and the second fine-grained access decisions are determined by the user´s digital credentials as well as other factors such as his/her IP address.

Keywords

Internet; authorisation; distributed databases; Internet; Intranet; Web database security; authentication; denial of service; distributed database; fine-grained access control; fine-grained database access control model; security systems; unified network security; Access control; Authentication; Communication system traffic control; Computer networks; Computer security; Data security; Distributed databases; Information security; Permission; Protection;

fLanguage

English

Publisher

ieee

Conference_Titel

Electronic Commerce and Security, 2009. ISECS '09. Second International Symposium on

Conference_Location

Nanchang

Print_ISBN

978-0-7695-3643-9

Type

conf

DOI

10.1109/ISECS.2009.191

Filename

5209852