实现数据库细粒度访问控制的一种动态查询修改算法

计算机科学 ›› 2010, Vol. 37 ›› Issue (12): 130-133.

实现数据库细粒度访问控制的一种动态查询修改算法

时杰,朱虹,冯玉才

(华中科技大学计算机学院武汉430074)

出版日期:2018-12-01 发布日期:2018-12-01
基金资助:
本文受863国家高技术研究发展计划(2006AA01Z430)资助。

Dynamical Query Modification Algorithm for Fine-grained Access Control in Databases

SHI Jie,ZHU Hong,FEND Yu-cai

Online:2018-12-01 Published:2018-12-01

摘要/Abstract

摘要： 由于隐私保护和基于W cb的安全需求的驱动，数据库细粒度访问控制引起了研究者的广泛关注。细粒度访问控制主要通过查询改写方法实现。然而，在以往的查询改写算法中，没有考虑用户提交的SQL语句的特性和细粒度访问控制策略的特性，从而导致最终执行的SQL中存在大量的冗余，影响了SQL语句执行的性能。在考虑SQL语句和细粒度访问控制策略的特性的前提下，分析了两类冗余，并给出了相应的移除方法。最终提出了一种用于细粒度访问控制实现的查询改写算法。实验证实该算法具有更好的性能。

关键词: 关系数据库，细粒度访问控制，查询改写，冗余

Abstract: Fine-grained access control has received much attention from research community due to the requirements of privacy preserving and Web-based applications. It is a promising approach to implement fine-grained access control by query modification. However, in the areing query modification algorithm, the features of the queries issued by users and the features of FGAC policy are not considered. Thus,there are redundancies in the final executed queries which make unnecessary overhead. We first analyzed two different redundancies bases on the feature of queries issued by users and the FGAC policies. I}hen, we proposed a technique to detect these redundancies and provided a new algorithm to implement FGAC. A comprehensive set of experiments show that the performance is improved by the proposed algorithm.

Key words: Relational database, Fine-grained access control, Query modification, Redundancy

时杰,朱虹,冯玉才. 实现数据库细粒度访问控制的一种动态查询修改算法[J]. 计算机科学, 2010, 37(12): 130-133. https://doi.org/

SHI Jie,ZHU Hong,FEND Yu-cai. Dynamical Query Modification Algorithm for Fine-grained Access Control in Databases[J]. Computer Science, 2010, 37(12): 130-133. https://doi.org/

参考文献

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed