An extended authorization model for relational databases