Aya Mohamed, Dagmar Auer, Daniel Hofer, Josef Küng,
"Authorization and Access Control for Different Database Models: Requirements and Current State of the Art"
, in Tran Khanh Dang, Josef Küng, Tai M. Chung: Future Data and Security Engineering. Big Data, Security and Privacy, Smart City and Industry 4.0 Applications, Serie Communications in Computer and Information Science, Springer, Singapore, Seite(n) 225-239, 11-2022, ISBN: 978-981-19-8069-5
Authorization and Access Control for Different Database Models: Requirements and Current State of the Art
Sprache des Titels:
Future Data and Security Engineering. Big Data, Security and Privacy, Smart City and Industry 4.0 Applications
Traditional SQL-based data stores have been the market leaders for decades. However, they have drawbacks with today?s massive and highly connected data due to their low flexibility in terms of data structures. NoSQL database models (i.e., key-value, column, document, and graph) are designed for unstructured data in large quantities. However, they currently lack fine-grained dynamic security support, with respect to authorization and access control, in contrast to relational database management systems. We define advanced authorization and access control requirements which are applicable for any database model regardless of the application and access control scenario. According to our discussion on existing access control features versus the requirements in the context of each database model, we conclude whether the requirements are satisfied or not, and provide a corresponding overview.
Sprache der Kurzfassung:
Communications in Computer and Information Science