SQL Extensions for Security Assertions
نویسندگان
چکیده
We describe the extensions to the relational query language SQL that are necessary to support multilevel security in database management systems. In a multilevel secure database with data at a variety of sensitivity levels. The data classifications are provided by security assertions. Consequently, the data definition language and the data manipulat ion language should provide support for incorporating these assertions.
منابع مشابه
Effective detection of vulnerable and malicious browser extensions
Unsafely coded browser extensions can compromise the security of a browser, making them attractive targets for attackers as a primary vehicle for conducting cyber-attacks. Among others, the three factors making vulnerable extensions a high-risk security threat for browsers include: i) the wide popularity of browser extensions, ii) the similarity of browser extensions with web applications, and ...
متن کاملAutomatic Generation of SQL/XML Views
This paper proposes an approach to generate XML views of relational data, using SQL/XML. The paper first specify the conditions for a set of correspondence assertions to fully specify the view in terms of the relational schema and, if so, we show that the mappings defined by the view correspondence assertions can be expressed as SQL/XML view definition. This paper focuses on an algorithm that a...
متن کاملFormalizing and Refining Authorization in SQL
The SQL standard specifies authorization via a large set of rather opaque rules, which are difficult to understand and dangerous to change. To make the model easier to work with, we formalize the implicit principles behind SQL authorization. We then discuss two extensions, for explicit metadata privileges and general privilege inference on derived objects. Although these are quite simple and ea...
متن کاملIntrinsic Support for Metadata Integration in Relation Federations
This paper investigates the idea of supporting metadata querying and restructuring using extensions of the SQL:1999 facilities for integrity constraints and active databases. Our approach involves associating meta-functionality with federation relations by means of constraints, assertions, and triggers. This approach can underpin recent work on dynamic interoperability in relational federations...
متن کاملTINTIN: a Tool for INcremental INTegrity checking of Assertions in SQL Server
We present TINTIN, a tool to perform efficient integrity checking of SQL assertions in SQL Server. TINTIN rewrites each assertion into a set of standard SQL queries that, given a set of insertions and deletions of tuples, allow to incrementally compute whether this update violates the assertion or not. If one of such queries returns a non empty answer, then the assertion is violated. Efficiency...
متن کامل