poster

Poster: ASQL - Attribute Based Access Control Extension for SQL

Authors:

Proteet Paul,

Tushar Gupta,

Shamik SuralAuthors Info & Claims

SACMAT '22: Proceedings of the 27th ACM on Symposium on Access Control Models and Technologies

Pages 259 - 261

https://doi.org/10.1145/3532105.3535033

Published: 08 June 2022 Publication History

Get Access

Abstract

In recent years, several attempts have been made to address the challenges associated with the implementation of Attribute Based Access control (ABAC). However, almost all of these look at ABAC as an application-level access control model. In this paper, we show a direction towards supporting ABAC constructs in SQL for database-level access control. Required Structured Query Language (SQL) extensions are first proposed followed by a prototype implementation for MySQL, arguably the most popular open source relational database. Our initial experiments show encouraging results. The MySQL version with ASQL support is made freely available through our GitHub repository for any interested user to download and compile for generating the enhanced instance.

Supplementary Material

MP4 File (sacmat56pp.mp4)

In the presentation video, we have made an attempt to explain our contributions in the paper titled Poster: ASQL- Attributed Based Access Control extension for SQL. The presentation starts with a brief introduction to Attribute Based Access Control (ABAC). This is followed by discussions about the motivation behind our work and an analysis of the existing literature in the field of access control in databases. Afterwards, we discuss some research challenges that we came up against and also give a brief description of our proposed approach. The second section of the presentation highlights our contributions. To that end, we first introduce the proposed syntax of ASQL followed by a discussion about the implementation of a native ABAC system in MySQL. Additionally, we also demonstrate the working of the proposed ASQL extension with the help of a miniature ABAC system. In the final section of our presentation, we look at some experimental results.

Download
92.66 MB

References

[1]

Eeshan Gupta, Shamik Sural, Jaideep Vaidya, and Vijayalakshmi Atluri. 2021. Attribute-Based Access Control for NoSQL Databases. In Proceedings of the Eleventh ACM Conference on Data and Application Security and Privacy. 317--319.

Digital Library

Google Scholar

[2]

Vincent C. Hu, David Ferraiolo, Rick Kuhn, Adam Schnitzer, Kenneth Sandlin, Robert Miller, and Karen Scarfone. 2014. Guide to attribute based access control (ABAC) definition and considerations. NIST Special Publication 800--162 (2014).

Google Scholar

[3]

MySQL. [n.d.]. MySQL 8.0 Reference Manual.

Google Scholar

[4]

Proteet Paul. 2022. Github Link. https://github.com/proteetpaul/mysql-server/tree/8.0_proteet_paul_ABAC

Google Scholar

[5]

Daniel Servos and Sylvia L. Osborn. 2017. Current Research and Open Problems in Attribute-Based Access Control. Comput. Surveys 49, 4 (2017), 65:1--65:45.

Google Scholar

Cited By

View all

Meena GPaul PSural S(2023)Efficiently Supporting Attribute-Based Access Control in Relational Databases2023 5th IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS-ISA)10.1109/TPS-ISA58951.2023.00037(230-239)Online publication date: 1-Nov-2023
https://doi.org/10.1109/TPS-ISA58951.2023.00037

Index Terms

Poster: ASQL - Attribute Based Access Control Extension for SQL
1. Security and privacy
  1. Security services
    1. Access control
  2. Software and application security

Recommendations

Attribute based access control scheme with controlled access delegation for collaborative E-health environments

Modern electronic healthcare (e-health) settings constitute collaborative environments with complex access requirements. Thus, there is a need for sophisticated fine-grained access control mechanisms to cater these access demands and thereby experience ...
An extension of SQL to support ordered domains in relational databases
IDEAS '97: Proceedings of the 1997 International Symposium on Database Engineering & Applications

The ordered relational model is an extension of the relational model which incorporates partial orderings into data domains. We demonstrate that the ordered relational model is suitable for modelling advanced applications involving tree-structured ...
Vishleshan: Performance Comparison and Programming Process Mining Algorithms in Graph-Oriented and Relational Database Query Languages
IDEAS '15: Proceedings of the 19th International Database Engineering & Applications Symposium

Process-Aware Information System (PAIS) are IT systems that manages, supports business processes and generate large event logs from execution of business processes. Process Mining consists of analyzing event logs generated by PAISs and discover business ...

Comments

Information & Contributors

Information

Published In

SACMAT '22: Proceedings of the 27th ACM on Symposium on Access Control Models and Technologies

June 2022

282 pages

ISBN:9781450393577

DOI:10.1145/3532105

General Chair:
Sven Dietrich
City University of New York
,
Program Chairs:
Omar Chowdhury
The University of Iowa
,
Daniel Takabi
Georgia State University

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 08 June 2022

Check for updates

Author Tags

Qualifiers

Poster

Conference

SACMAT '22

Sponsor:

SIGSAC

SACMAT '22: The 27th ACM Symposium on Access Control Models and Technologies

June 8 - 10, 2022

NY, New York, USA

Acceptance Rates

Overall Acceptance Rate 177 of 597 submissions, 30%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
94
Total Downloads

Downloads (Last 12 months)31
Downloads (Last 6 weeks)0

Reflects downloads up to 15 Oct 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Meena GPaul PSural S(2023)Efficiently Supporting Attribute-Based Access Control in Relational Databases2023 5th IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS-ISA)10.1109/TPS-ISA58951.2023.00037(230-239)Online publication date: 1-Nov-2023
https://doi.org/10.1109/TPS-ISA58951.2023.00037

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Attribute based access control scheme with controlled access delegation for collaborative E-health environments

An extension of SQL to support ordered domains in relational databases

Vishleshan: Performance Comparison and Programming Process Mining Algorithms in Graph-Oriented and Relational Database Query Languages