Encontrados 2 documentos, a visualizar página 1 de 1
Extending RBAC model to control sequences of CRUD expressions
Pereira, Óscar Mortágua; Regateiro, Diogo Domingues; Aguiar, Rui L.In database applications, access control is aimed at requests are mainly formalized by Create, Read, Update and Delete (CRUD)expressions. The supervision process can be formalized at a high level, such as based on the RBAC model, but in the end the relevant aspect is the data being accessed through each CRUD expression. In critical database applications access control can be enforced not on a CRUD by CRUD bas...
Runtime values driven by access control policies: statically enforced at the le...
Pereira, Óscar Mortágua; Aguiar, Rui L.; Santos, Maribel YasminaAccess control is a key challenge in software engineering, especially in relational database applications. Current access control techniques are based on additional security layers designed by security experts. These additional security layers do not take into account the necessary business logic leading to a separation between business tiers and access control mechanisms. Moreover, business tiers are built fro...
| Financiadores do RCAAP | |||||||
|
|
|
|
|
|
||