Download now Free registration required
Reflective Database Access Control (RDBAC) is a model in which a database privilege is expressed as a database query itself, rather than as a static privilege contained in an access control list. RDBAC aids the management of database access controls by improving the expressiveness of policies. However, such policies introduce new interactions between data managed by different users, and can lead to unexpected results if not carefully written and analyzed. This paper proposes the use of Transaction Datalog as a formal framework for expressing reflective access control policies.
- Format: PDF
- Size: 203.3 KB