Dissertations and Theses @ UNI

Availability

Open Access Thesis

Keywords

Database security;

Abstract

As an increasing number of organizations become dependent on access to their data stored in the database, the need for adequate security measures is becoming more and more critical. Enforcing data protection means safeguarding data from unauthorized or improper disclosures or modifications. Access control policies should be independent of the mechanisms that will implement the physical control of access: this allows control mechanism to be available for different policies. Although considerable work was done on access control models and related mechanisms for databases (Castano & Fugini, 1994), current access control models and mechanisms are not flexible enough to meet the access control requirements of modem application environments (Deening, 1982). This article first reviews the access control policies commonly found in current database systems, describes the existing access model, and follows with a discussion of an interview. It then presents a flexible authorization mechanism that can support different security policies as well as the evaluation of this mechanism. Key word: Database Security, Access Control, Discretionary Access Control, Mandatory Access Control, Role-Based Access Control, Closed/ Open World Policies, Strong I Weak authorization, Positive/ Negative authorization, Group Membership, Membership Path.

Year of Submission

1998

Degree Name

Master of Science

Department

Department of Computer Science

First Advisor

Janet M. Drake

Second Advisor

Mark A. Fineup

Third Advisor

Walter E. Beck

Comments

If you are the rightful copyright holder of this thesis and wish to have it removed from the Open Access Collection, please submit a request to scholarworks@uni.edu and include clear identification of the work, preferably with URL.

Date Original

1998

Object Description

1 PDF file (92 leaves)

Language

en

File Format

application/pdf

Download

Comments?

Share

COinS