“Privacy protection and fine grained access control to web database”
نویسندگان
چکیده
Web database is combination of database and web technology. Web database is placed on the Internet, there are many security problems. Web and distributed databases play the key role in most of these Web applications and thus it is critical to protect them from unauthorized access and malicious attacks. The secrecy and the integrity are two important demands of security system. When database access control and the network security are addressed separately, the security systems are not optimized sufficiently as a whole. We propose a method of integrating network security with criterion based access control to handle network security and the fine grained Web database access control simultaneously. This access control mechanism is applicable for any existing web databases and is capable to prevent many kinds of attacks, thus significantly decreases the web databases' attack surface.
منابع مشابه
myTunes: Semantically Linked and User-Centric Fine-Grained Privacy Control on Android
Smartphone operating systems provide designated databases and services for user’s private information (e.g., contacts data and SMS or location) that can be conveniently accessed by 3rd party apps through clearly defined APIs. The popular Android OS deploys a permission framework and a reference monitor to protect the interfaces of these security and privacy sensitive components. However, Androi...
متن کامل“Loss Minimization of Web Databases by Fine Grain Approach”
Information is the most valuable asset for organizations. One of the goals of organizations is to share their data and at the same time to enforce their policies. Web database is a combined production with database technology and Web technology. Web database is placed on the Internet, there are many security problems. The secrecy and the integrity are two important demands of security system. W...
متن کاملDeploying Privacy Improved RBAC in Web Information Systems
Access control technology holds a central role in achieving trustworthy management of personally identifiable information in modern information systems. In this article, a privacy-sensitive model that extends Role-Based Access Control (RBAC) to provide privacy protection through fine-grained and justin-time access control in Web information systems is proposed. Moreover, easy and effective mapp...
متن کاملA Privacy Preference Ontology (PPO) for Linked Data
Linked Data enables people to access other users’ data stored in several places, distributed across theWeb. Current Linked Data mechanisms mostly provide an open environment where all data is freely accessible, which could discourage some people to provide sensitive data in the Linking Open Data (LOD) cloud. Although the existing Web Access Control (WAC) vocabulary restricts RDF documents to sp...
متن کاملSelective and Fine-Grained Access to Data in the Cloud
This chapter surveys some of the research results related to the protection and efficient access to data stored and managed by external cloud servers. We first provide an overview of the security and privacy problems and challenges that need to be considered, and then illustrate emerging approaches for protecting data externally stored, and for enforcing fine-grained (queries) and selective (ac...
متن کامل