RBAC+: Protecting Web Databases With Access Control Mechanism
Journal Title: INTERNATIONAL JOURNAL OF MANAGEMENT & INFORMATION TECHNOLOGY - Year 2012, Vol 2, Issue 1
Abstract
With the wide adoption of Internet, security of web database is a key issue. In web-based applications, due to the use of n-tier architecture, the database server has no knowledge of the web application user and hence all authorization decisions are based upon execution of specific web application. Application server has full access privileges to delegate to the end user based upon the user requirement. The identity of the end user is hidden , subsequently database server fails to assign proper authorizations to the end user. Hence, current approaches to access control on databases do not fit for web databases because they are mostly based on individual user identities. To fill this security gap, the definition of application aware access control system is needed. In this paper, RBAC+ Model, an extension of NIST RBAC provides a application aware access control system to prevent attacks with the notion of application, application profile and sub-application session.
Authors and Affiliations
Archna Arudkar, Vimla Jethani
Keywords
Related Articles
- EP ID EP654164
- DOI 10.24297/ijmit.v2i1.1407
- Views 143
- Downloads 0
IMPULSE PURCHASE BEHAVIOUR: A REVIEW
For more than fifty years, researchers have strived hard to form a better understanding of impulse buying (Stern; 1962; Rook et.al; 1987; Rook and Fisher; 1995; Peck and Childers; 2006 ; Chang et.al; 2011). The purpose o...
Efficient Montgomery Modular Multiplication by using Residue Number System
Residue number system is a carry free system that performs arithmetic operation on residues instead of the weighted binary number. By applying Residue Number System (RNS) to Montgomery modular multiplication the delay of...
SOCIAL NETWORKING SITES AND CONSUMER ENGAGEMENT
The growth of the social networking phenomenon across the Internet led by social networking sites like Facebook, Twitter and LinkedIn etc. has altered the playing field for business and consumer marketers of all so...
THE FORWARD EXCHANGE PREMIUM DYNAMICS Dr. Nessrine HAMZAOUI ALOUI
The purpose of this paper is to analyze the JPY/USD and the CAD/USD forward exchange premiums by adopting the ARCH/GARCH modeling, given its descriptive and predictive advantages. We estimate a symmetric linear model by...
Maintainability analysis of Consumer Electronics using Software Quality Metrics
Software quality is a complex mix of factors that will very across different application and the customers who request them [1]. Determining the quality of products so ftware quality is important factor in consumer elect...