Detection of access control flaws in a distributed database system with local site autonomy

Author

Temtanapat, Yaowadee ; Spooner, David L.

Author_Institution

Dept. of Comput. Sci., Rensselaer Polytech. Inst., Troy, NY, USA

fYear

1997

fDate

25-27 Aug 1997

Firstpage

85

Lastpage

93

Abstract

We address the authorization of access privileges to users in a local database management system (DBMS) that is interoperating in a distributed database system (DDBMS). Our focus is on the potential in a next generation security system for delegation access concepts such as role hierarchy delegation to violate the security policy in a local database system that is part of the distributed system. This kind of violation can be categorized as a violation of local autonomy. We propose a labeled graph model to detect such a problem

Keywords

authorisation; database theory; distributed databases; graph theory; security of data; access control flaw detection; access privileges; authorization; delegation access concepts; distributed database system; interoperation; labeled graph model; local autonomy; local database management system; local site autonomy; next generation security system; role hierarchy delegation; Access control; Authorization; Computer science; Control systems; Data engineering; Data security; Database systems; Design engineering; Economic indicators; Protection;

fLanguage

English

Publisher

ieee

Conference_Titel

Database Engineering and Applications Symposium, 1997. IDEAS '97. Proceedings., International

Conference_Location

Montreal, Que.

ISSN

1098-8068

Print_ISBN

0-8186-8114-4

Type

conf

DOI

10.1109/IDEAS.1997.625662

Filename

625662