Hardening Access Control and Data Protection in GFS-like File Systems

The Internet (and networks overall) are currently the core media for data and knowledge exchange. XML is currently the most popular standardization for Web document representation and is rapidly becoming a standard for data representation and exchange over the Internet. One of the main issues is XML documents and in particular, storage and accessing. Among data management issues, storage and security techniques have a particular importance, since the performance of the overall XML-based Web information system relies on them. Storage issues mainly rely on the usage of typical database management systems (DBMSs), whereas XML documents can also be stored in other storage environments (such as file systems and LDAP directories) (Amer-Yahia & Fernandez, 2002; Kanne & Moerkotte, 2000; Silberschatz, Korth & Sudarshan, 2002). Additionally, in order to guarantee the security of the XML data, which are located in a variety of the above storage topologies, the majority of implementations also provide an appropriate access control. Most storage systems cooperate with access control modules implementing various models (Joshi, Aref, Ghafoor & Spafford, 2001), whereas there are few commercial access control products available. However, there are some standardized XML-based access control languages that can be adopted by most tools.

Download Full-text

Privacy Analysis of User Behavior Using Alignments

it - Information Technology ◽

10.1515/itit.2013.2006 ◽

2013 ◽

Vol 55 (6) ◽

Author(s):

Arya Adriansyah ◽

Boudewijn F. van Dongen ◽

Nicola Zannone

Keyword(s):

Information Systems ◽

Access Control ◽

Data Protection ◽

User Behavior ◽

Fundamental Problem ◽

Privacy Analysis

AbstractPrivacy is becoming a urgent issue in information systems nowadays because of the stringent requirements imposed by data protection regulations. Traditional security approaches based on access control and authorization are not adequate to address these requirements. The underlying fundamental problem is that those approaches are preventive and thus they are not able to deal with exceptions. In this paper, we present a practical privacy framework that shifts the problem of preventing infringements into a problem of detecting infringements. The framework is based on systematic log auditing, use of patterns and privacy metrics to detect and quantify infringements.

Download Full-text

A Semi-Automated Methodology for Extracting Access Control Rules from the European Data Protection Directive

2016 IEEE Security and Privacy Workshops (SPW) ◽

10.1109/spw.2016.16 ◽

2016 ◽

Cited By ~ 4

Author(s):

Kaniz Fatema ◽

Christophe Debruyne ◽

Dave Lewis ◽

Declan OSullivan ◽

John P. Morrison ◽

...

Keyword(s):

Access Control ◽

Data Protection ◽

Control Rules ◽

European Data ◽

Access Control Rules ◽

Data Protection Directive

Download Full-text

Storage and Access Control Issues for XML Documents

Information Security and Ethics ◽

10.4018/978-1-59904-937-3.ch053 ◽

2008 ◽

pp. 713-736

Author(s):

George Pallis ◽

Konstantina Stoupa ◽

Athena Vakali

Keyword(s):

Access Control ◽

Knowledge Exchange ◽

File Systems ◽

Data Communication ◽

Control Policies ◽

Xml Database ◽

Xml Documents ◽

Access Control Models ◽

Access Control Policies ◽

Documents Management

XML documents management is becoming an area of great research value and interest since XML has become a popular standard for data communication and knowledge exchange over the Internet. Therefore, new issues have emerged in terms of storage and access control policies for XML documents. Concerning the storage issues, the majority of proposals rely on the usage of typical database management systems (DBMSs), whereas XML documents can also be stored in other storage environments (such as file systems and LDAP directories). It is important to consider storage and access control together since these issues are essential in implementations for XML documents management. Moreover, the chapter focuses on the recent access control models which guarantee the security of the XML-based data, which are located in a variety of storage topologies. This chapter’s goal is to survey and classify existing approaches for XML documents storage and access control, and, at the same time, highlight the main differences between them. The most popular XML database software tools are outlined in terms of their storage and access control policies.

Download Full-text

Storage and Access Control Issues for XML Documents

Web Information Systems ◽

10.4018/978-1-59140-208-4.ch004 ◽

2004 ◽

pp. 104-140 ◽

Cited By ~ 2

Author(s):

George Pallis ◽

Konstantina Stoupa ◽

Athena Vakali

Keyword(s):

Access Control ◽

Knowledge Exchange ◽

File Systems ◽

Data Communication ◽

Control Policies ◽

Xml Database ◽

Xml Documents ◽

Access Control Models ◽

Access Control Policies ◽

Documents Management

XML documents management is becoming an area of great research value and interest since XML has become a popular standard for data communication and knowledge exchange over the Internet. Therefore, new issues have emerged in terms of storage and access control policies for XML documents. Concerning the storage issues, the majority of proposals rely on the usage of typical database management systems (DBMSs), whereas XML documents can also be stored in other storage environments (such as file systems and LDAP directories). It is important to consider storage and access control together since these issues are essential in implementations for XML documents management. Moreover, the chapter focuses on the recent access control models which guarantee the security of the XML-based data, which are located in a variety of storage topologies. This chapter’s goal is to survey and classify existing approaches for XML documents storage and access control, and, at the same time, highlight the main differences between them. The most popular XML database software tools are outlined in terms of their storage and access control policies.

Download Full-text

Data protection in transactional and statistical applications of databases

Computer Science and Mathematical Modelling ◽

10.5604/01.3001.0014.4439 ◽

2020 ◽

Vol 0 (10/2019) ◽

pp. 31-39

Author(s):

Bolesław Szafrański ◽

Rafał Bałazy

Keyword(s):

Access Control ◽

Flow Control ◽

Data Protection ◽

Database System ◽

Database Management System ◽

Oracle Database ◽

Access Control Models ◽

Control Models ◽

Transactional Databases ◽

Protection Mechanisms

The article describes a discussion on the issue of data protection in databases. The discussion attempts to answer the question about the possibility of using a transactional database system as a system capable of data protection in a statistical database. The discussion is preceded by a reminder of the basic issues related to data protection in databases, including reminder of flow control models, access control models and the inference. The key element of the article is the analysis, based on the example of the Oracle database management system, whether data protection mechanisms in transactional databases can be effective in case of data protection in statistical databases.

Download Full-text

FRAC: Implementing Role-Based Access Control for Network File Systems

Sixth IEEE International Symposium on Network Computing and Applications (NCA 2007) ◽

10.1109/nca.2007.25 ◽

2007 ◽

Author(s):

Aniruddha Bohra ◽

Stephen Smaldone ◽

Liviu Iftode

Keyword(s):

Access Control ◽

File Systems ◽

Role Based Access Control ◽

Network File Systems ◽

Role Based

Download Full-text