SeqBAC: A Sequence-Based Access Control Model

Detalhes bibliográficos
Autor(a) principal: Regateiro, Diogo
Data de Publicação: 2018
Outros Autores: Mortágua, Óscar, Aguiar, Rui
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10773/23834
Resumo: Access control, when used in the context of database applications, is aimed to supervise the requests made by legitimate users to access sensitive data. These requests represent actions that a user can perform on a database and they typically read or write data. While this supervision can be formalized at a higher level, e.g. using an access control model such as RBAC, in the end, the data access is done through each authorized action. Therefore, the current access control models enforce their policies on an action by action basis, being unable to support relations of order between them. In many database applications, access to data is not done randomly, but by following very specific sequences of actions which are not supervised. This paper argues that a better security policy can be achieved by supervising these sequences. Thus, previous research is leveraged to propose a formalized model, capable of enforcing access control over the sequences of actions that can complement existing access control models.
id RCAP_ab9604fe2d19b1ecaddd15678fdb0b1f
oai_identifier_str oai:ria.ua.pt:10773/23834
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling SeqBAC: A Sequence-Based Access Control ModelInformation securityAccess controlSequence enforcementDatabase securitySeqBACAccess control, when used in the context of database applications, is aimed to supervise the requests made by legitimate users to access sensitive data. These requests represent actions that a user can perform on a database and they typically read or write data. While this supervision can be formalized at a higher level, e.g. using an access control model such as RBAC, in the end, the data access is done through each authorized action. Therefore, the current access control models enforce their policies on an action by action basis, being unable to support relations of order between them. In many database applications, access to data is not done randomly, but by following very specific sequences of actions which are not supervised. This paper argues that a better security policy can be achieved by supervising these sequences. Thus, previous research is leveraged to propose a formalized model, capable of enforcing access control over the sequences of actions that can complement existing access control models.KSI Research Inc.2018-07-12T17:01:22Z2018-07-01T00:00:00Z2018-07-01info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articleapplication/pdfhttp://hdl.handle.net/10773/23834eng2325-90002325-908610.18293/SEKE2018-099Regateiro, DiogoMortágua, ÓscarAguiar, Ruiinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-05-06T04:16:36Zoai:ria.ua.pt:10773/23834Portal AgregadorONGhttps://www.rcaap.pt/oai/openairemluisa.alvim@gmail.comopendoar:71602024-05-06T04:16:36Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv SeqBAC: A Sequence-Based Access Control Model
title SeqBAC: A Sequence-Based Access Control Model
spellingShingle SeqBAC: A Sequence-Based Access Control Model
Regateiro, Diogo
Information security
Access control
Sequence enforcement
Database security
SeqBAC
title_short SeqBAC: A Sequence-Based Access Control Model
title_full SeqBAC: A Sequence-Based Access Control Model
title_fullStr SeqBAC: A Sequence-Based Access Control Model
title_full_unstemmed SeqBAC: A Sequence-Based Access Control Model
title_sort SeqBAC: A Sequence-Based Access Control Model
author Regateiro, Diogo
author_facet Regateiro, Diogo
Mortágua, Óscar
Aguiar, Rui
author_role author
author2 Mortágua, Óscar
Aguiar, Rui
author2_role author
author
dc.contributor.author.fl_str_mv Regateiro, Diogo
Mortágua, Óscar
Aguiar, Rui
dc.subject.por.fl_str_mv Information security
Access control
Sequence enforcement
Database security
SeqBAC
topic Information security
Access control
Sequence enforcement
Database security
SeqBAC
description Access control, when used in the context of database applications, is aimed to supervise the requests made by legitimate users to access sensitive data. These requests represent actions that a user can perform on a database and they typically read or write data. While this supervision can be formalized at a higher level, e.g. using an access control model such as RBAC, in the end, the data access is done through each authorized action. Therefore, the current access control models enforce their policies on an action by action basis, being unable to support relations of order between them. In many database applications, access to data is not done randomly, but by following very specific sequences of actions which are not supervised. This paper argues that a better security policy can be achieved by supervising these sequences. Thus, previous research is leveraged to propose a formalized model, capable of enforcing access control over the sequences of actions that can complement existing access control models.
publishDate 2018
dc.date.none.fl_str_mv 2018-07-12T17:01:22Z
2018-07-01T00:00:00Z
2018-07-01
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10773/23834
url http://hdl.handle.net/10773/23834
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 2325-9000
2325-9086
10.18293/SEKE2018-099
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv KSI Research Inc.
publisher.none.fl_str_mv KSI Research Inc.
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv mluisa.alvim@gmail.com
_version_ 1817543683916955648

Registros relacionados