loading
Documents

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Leonardo Guerreiro Azevedo ; Sergio Puntar ; Raphael Thiago ; Fernanda Baião and Claudia Cappelli

Affiliation: Federal University of the State of Rio de Janeiro (UNIRIO), Brazil

ISBN: 978-989-8425-04-1

ISSN: 2184-4992

Keyword(s): Database Security, Data Access Authorization Business Rules, VPD, TPC-H Benchmark.

Related Ontology Subjects/Areas/Topics: Data and Application Security and Privacy ; Database Security ; Information and Systems Security

Abstract: This work proposes a flexible framework for managing and implementing data access authorization business rules on top of relational DBMSs, in an independent way for the applications accessing a database. The framework adopts the RBAC policy definition approach, and was implemented on Oracle DBMS. Therefore, data access security is managed by the data server layer in a centralized manner, rather than in each application that accesses data, and is enforced by the database server. Experimental tests were executed using the TPCH Benchmark workload, and the results indicate the effectiveness of our proposal.

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.235.107.209

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Guerreiro Azevedo L.; Puntar S.; Thiago R.; Baião F.; Cappelli C. and (2010). A FLEXIBLE FRAMEWORK FOR APPLYING DATA ACCESS AUTHORIZATION BUSINESS RULES.In Proceedings of the 12th International Conference on Enterprise Information Systems - Volume 3: ICEIS, ISBN 978-989-8425-04-1, pages 275-280. DOI: 10.5220/0002909602750280

@conference{iceis10,
author={Leonardo {Guerreiro Azevedo} and Sergio Puntar and Raphael Thiago and Fernanda Baião and Claudia Cappelli},
title={A FLEXIBLE FRAMEWORK FOR APPLYING DATA ACCESS AUTHORIZATION BUSINESS RULES},
booktitle={Proceedings of the 12th International Conference on Enterprise Information Systems - Volume 3: ICEIS,},
year={2010},
pages={275-280},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002909602750280},
isbn={978-989-8425-04-1},
}

TY - CONF

JO - Proceedings of the 12th International Conference on Enterprise Information Systems - Volume 3: ICEIS,
TI - A FLEXIBLE FRAMEWORK FOR APPLYING DATA ACCESS AUTHORIZATION BUSINESS RULES
SN - 978-989-8425-04-1
AU - Guerreiro Azevedo, L.
AU - Puntar, S.
AU - Thiago, R.
AU - Baião, F.
AU - Cappelli, C.
PY - 2010
SP - 275
EP - 280
DO - 10.5220/0002909602750280

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.