This paper proposes two major extensions to the authorization model for System R relational database management system. The first extension concerns the revoke operation. The revised model provides for a new type of revoke operation, called noncascading revoke, in addition to the System R cascading revoke operation. Unlike cascading revoke, noncascading revoke operation does not recursively remove privileges from users. The second extension concerns negative authorization. The details related to its application are specified in the paper.
Authorizations in Relational Database Management Systems / E. Bertino, P. Samarati, S. Jajodia - In: Proc. of the 1st ACM Conference on Computer and Communications Security[s.l] : ACM, 1993. - ISBN 0-89791-629-8. - pp. 130-139 (( Intervento presentato al 1. convegno Proc. of the 1st ACM Conference on Computer and Communications Security tenutosi a Fairfax, VA, USA nel 1993 [10.1145/168588.168605].
Authorizations in Relational Database Management Systems
P. SamaratiSecondo
;
1993
Abstract
This paper proposes two major extensions to the authorization model for System R relational database management system. The first extension concerns the revoke operation. The revised model provides for a new type of revoke operation, called noncascading revoke, in addition to the System R cascading revoke operation. Unlike cascading revoke, noncascading revoke operation does not recursively remove privileges from users. The second extension concerns negative authorization. The details related to its application are specified in the paper.Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.