Enhancing MongoDB with Purpose-Based Access Control

Enhancing MongoDB with Purpose-Based Access Control

Privacy has become a key requirement for data management systems. Nevertheless, NoSQL datastores, namely highly scalable non relational database management systems, which often support data management of Internet scale applications,still do not provide support for privacy policies enforcement. With...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on dependable and secure computing 2017-11, Vol.14 (6), p.591-604
Hauptverfasser: Colombo, Pietro, Ferrari, Elena
Format: Artikel
Sprache:eng
Schlagworte:
Access control
Authorization
Data base management systems
Data management
Data models
Enforcement
MongoDB
Monitoring
NoSQL datastores
Privacy
Purpose-based access control
Relational data bases
Servers
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Privacy has become a key requirement for data management systems. Nevertheless, NoSQL datastores, namely highly scalable non relational database management systems, which often support data management of Internet scale applications,still do not provide support for privacy policies enforcement. With this work, we begin to address this issue, by proposing an approach for the integration of purpose based policy enforcement capabilities into MongoDB, a popular NoSQL datastore. Our contribution consists of the enhancement of the MongoDB role based access control model with privacy concepts and related enforcement monitor. The proposed monitor is easily integrable into any MongoDB deployment through simple configurations. Experimental results show that our monitor enforces purpose-based access control with low overhead.
ISSN:1545-5971
1941-0018
DOI:10.1109/TDSC.2015.2497680