Efficient Enforcement of Action-Aware Purpose-Based Access Control within Relational Database Management Systems

Efficient Enforcement of Action-Aware Purpose-Based Access Control within Relational Database Management Systems

Among the variety of access control models proposed for database management systems (DBMSs) a key role is covered by the purpose-based access control model, which, while enforcing access control, also achieves basic privacy preservation. We believe that DBMSs could greatly take benefit from the inte...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on knowledge and data engineering 2015-08, Vol.27 (8), p.2134-2147
Hauptverfasser: Colombo, Pietro, Ferrari, Elena
Format: Artikel
Sprache:eng
Schlagworte:
Access control
Customizing
Data base management systems
Data models
Data privacy
Feasibility
Joints
Management systems
Policies
Relational data bases
Specifications
Temperature sensors
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Among the variety of access control models proposed for database management systems (DBMSs) a key role is covered by the purpose-based access control model, which, while enforcing access control, also achieves basic privacy preservation. We believe that DBMSs could greatly take benefit from the integration of an enhanced purpose based model supporting highly customized and efficient access control. Therefore, in this paper, we propose a purpose-based model that supports action-aware policy specification and a related efficient enforcement framework to be integrated into relational DBMSs. The experimental evaluation we have performed shows the feasibility and efficiency of the proposed framework.
ISSN:1041-4347
1558-2191
DOI:10.1109/TKDE.2015.2411595