Enforcing Confidentiality in Relational Databases by Reducing Inference Control to Access Control

2007 ◽  
pp. 407-422 ◽  
Author(s):  
Joachim Biskup ◽  
Jan-Hendrik Lochner
Keyword(s):  
Access Control ◽  
Relational Databases ◽  
Inference Control

scholarly journals Coupling of Inference and Access Controls to Ensure Privacy Protection

2021 ◽  
Vol 11 (5) ◽  
pp. 529-535
Author(s):  
Jihane El Mokhtari ◽  
Anas Abou El Kalam ◽  
Siham Benhaddou ◽  
Jean-Philippe Leroy
Keyword(s):  
Access Control ◽  
Privacy Protection ◽  
Multidimensional Analysis ◽  
Sensitive Data ◽  
Inference Control ◽  
External Data ◽  
Control Rules ◽  
Access Controls ◽  
Policy Information ◽  
History Of

This article is devoted to the topic of coupling access and inference controls into security policies. The coupling of these two mechanisms is necessary to strengthen the protection of the privacy of complex systems users. Although the PrivOrBAC access control model covers several privacy protection requirements, the risk of inferring sensitive data may exist. Indeed, the accumulation of several pieces of data to which access is authorized can create an inference. This work proposes an inference control mechanism implemented through multidimensional analysis. This analysis will take into account several elements such as the history of access to the data that may create an inference, as well as their influence on the inference. The idea is that this mechanism delivers metrics that reflect the level of risk. These measures will be considered in the access control rules and will participate in the refusal or authorization decision with or without obligation. This is how the coupling of access and inference controls will be applied. The implementation of this coupling will be done via the multidimensional OLAP databases which will be requested by the Policy Information Point, the gateway brick of XACML to the various external data sources, which will route the inference measurements to the decision-making point.

scholarly journals Access Control Models in NoSQL Databases: An Overview

2019 ◽  
Vol 8 (1) ◽  
pp. 1-9
Author(s):  
Ashwaq A. Alotaibi, Reem M. Alotaibi and Nermin Hamza Ashwaq A. Alotaibi, Reem M. Alotaibi and Nermin Hamza
Keyword(s):  
Access Control ◽  
Relational Databases ◽  
Unstructured Data ◽  
Huge Amount ◽  
Sensitive Data ◽  
Nosql Databases ◽  
Security Issues ◽  
Access Control Models ◽  
Control Models ◽  
Nosql Database

Recently non-relational databases known as NoSQL have become most popular for handling a huge amount of data. Many organizations move from relational databases towards NoSQL databases due to the growing popularity of cloud computing and big data. NoSQL database is designed to handle unstructured data like documents, e-mails, and social media efficiently. It uses distributed and cooperating devices to store and retrieve data. As a large number of people storing sensitive data in NoSQL databases, security issues become critical concerns. NoSQL has many advantages like scalability and availability, but it suffers from some security issues like weak authorization mechanisms. This paper reviews the different models of NoSQL databases and the security issues concerning these databases. In addition, we present the existing access control models in different NoSQL databases.

Sign in / Sign up

Export Citation Format

Share Document