Affiliation:
1. DICOM, University of Insubria, Varese, Italy
2. National University of Singapore, Singapore
Abstract
Although access control is currently a key component of any computational system, it is only recently that mechanisms to guard against unauthorized access to streaming data have started to be investigated. To cope with this lack, in this article, we propose a general framework to protect streaming data, which is, as much as possible, independent from the target stream engine. Differently from RDBMSs, up to now a standard query language for data streams has not yet emerged and this makes the development of a general solution to access control enforcement more difficult. The framework we propose in this article is based on an expressive role-based access control model proposed by us. It exploits a query rewriting mechanism, which rewrites user queries in such a way that they do not return tuples/attributes that should not be accessed according to the specified access control policies. Furthermore, the framework contains a deployment module able to translate the rewritten query in such a way that it can be executed by different stream engines, therefore, overcoming the lack of standardization. In the article, besides presenting all the components of our framework, we prove the correctness and completeness of the query rewriting algorithm, and we present some experiments that show the feasibility of the developed techniques.
Funder
National University of Singapore
Publisher
Association for Computing Machinery (ACM)
Subject
Safety, Risk, Reliability and Quality,General Computer Science
Reference37 articles.
1. Aurora: a new model and architecture for data stream management
2. On demand classification of data streams
3. Ali M. ElTabakh M. and Nita-Rotaru C. 2005. FT-RC4: A robust security mechanism for data stream systems. Tech. rep. TR-05-024 Purdue University. Ali M. ElTabakh M. and Nita-Rotaru C. 2005. FT-RC4: A robust security mechanism for data stream systems. Tech. rep. TR-05-024 Purdue University.
Cited by
34 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献