|
|
|
@inproceedings{DBLP:conf/vldb/Gal-OzGF93,
author = {Nurit Gal-Oz and
Ehud Gudes and
Eduardo B. Fern{\'a}ndez},
editor = {Rakesh Agrawal and
Se{\'a}n Baker and
David A. Bell},
title = {A Model of Methods Access Authorization in Object-oriented Databases},
booktitle = {19th International Conference on Very Large Data Bases, August
24-27, 1993, Dublin, Ireland, Proceedings},
publisher = {Morgan Kaufmann},
year = {1993},
isbn = {1-55860-152-X},
pages = {52-61},
ee = {db/conf/vldb/Gal-OzGF93.html},
crossref = {DBLP:conf/vldb/93},
bibsource = {DBLP, http://dblp.uni-trier.de}
}
Object-oriented databases are a recent and important development and many studies of them have been performed. These consider aspects such as data modeling,query languages, performance, and concurrency control. Relatively few studies address their security, a critical aspect in systems like these that have a complex and rich data structuring.
We developed previously a model of authorization for object-oriented databaseswhich includes a set of policies, a structure for authorization rules and their administration, and evaluation algorithms. In that model the high-level query requests were resolved into read and writes at the authorization level. In this paper we extend the set of access primitives to include ways to control the execution of methods or functions. Policy issues are discussed first, and then algorithms for access evaluation at compile-time and at run-time.
Copyright © 1993 by the VLDB Endowment. Permission to copy without fee all or part of this material is granted provided that the copies are not made or distributed for direct commercial advantage, the VLDB copyright notice and the title of the publication and its date appear, and notice is given that copying is by the permission of the Very Large Data Base Endowment. To copy otherwise, or to republish, requires a fee and/or special permission from the Endowment.
