Abstract
In this paper, we propose an authorization model for distributed databases. Multiple object granularity of authorizations, such as global relations, fragments and attributes, are supported. Administrative privilege can be delegated from one subject to another to provide decentralized authorization administration. Authorization propagations along both the relation fragmentation tree and the subject group-subgroup hierarchical tree are also considered. Further more, conflict resolution policy is provided that supports well controlled delegations and exceptions. Overall the system provides a very flexible framework for specifying and evaluating the authorizations in distributed database systems.
| Original language | English |
|---|---|
| Title of host publication | Foundations of Intelligent Systems: 15th international symposium, ISMIS 2005, Saratoga Springs, NY, USA, May 25-28, 2005: Proceedings |
| Publisher | Springer |
| Number of pages | 9 |
| ISBN (Print) | 9783540258780 |
| Publication status | Published - 2005 |
| Event | International Symposium on Methodologies for Intelligent Systems - Duration: 1 Jan 2005 → … |
Conference
| Conference | International Symposium on Methodologies for Intelligent Systems |
|---|---|
| Period | 1/01/05 → … |
Keywords
- distributed databases
- data protection
- authorization