Presentation is loading. Please wait.

Presentation is loading. Please wait.

Access Control.

Published by Modified over 6 years ago

Similar presentations

Presentation on theme: "Access Control."— Presentation transcript:

1 Access Control

2 Discretionary Access Control
The primary form of access control used in DBMSs is discretionary and based on the granting and revocation of privileges. Unfortunately, every DBMS does this in its own special way, so I'll be talking generalizations for the most part. Each client to a database practicing access control must authenticate themselves (usually with a password) to be able to use the privileges associated with an account. Informally there are two non-mutually-exclusive levels for assigning privileges: The account level: Each account has specific privileges that apply to the entire database. The relation level: Each account has specific privileges that apply to particular relations/tables.

3 Account Level Privileges
These privileges can be granted to particular accounts: CREATE SCHEMA CREATE TABLE / VIEW / TRIGGER / ... ALTER / DROP SELECT UPDATE / DELETE / INSERT Ability to grant such privileges on other accounts

4 Relation Level Privileges
These are privileges that apply to a specific relation in the database. SELECT: a.k.a. retrieval or read privilege Modification: (INSERT, UPDATE, DELETE) Additionally it is often possible to specify which attributes are allowed to be modified Reference: This gives the account the capability to reference a relation when specifying integrity constraints (foreign key constraints)

5 Why would you not give all accounts reference privileges?
1. References can be used to gain read privileges on a table. 2. References can be used to access all the attributes of a table. 3. References can reveal the existence of primary keys of a table. 4. Reference (especially letters of) are a pain because you don't have any job experience yet.

6 How do you provide access to a subset of attributes of a table?
1. Create a new table with only the allowed attributes and give access to that. 2. Create a view with only the allowed attributes and give access to that. 3. Create triggers that will only allow rows to be selected that the account is authorized to see. 4. Blind folds and pinky promises

7 Propagation of Privileges
The root/superuser/admin account of a database normally has the full set of privileges. They can grant subsets of these privileges on other accounts. However, requiring the admin account to be the only account able to grant privileges is inefficient and a minor security flaw. It is often more efficient to allow other accounts to have the ability to propagate (grant) some of their privileges to other accounts. Privileges can also be revoked (removed) when an account no longer needs them.

8 What should happen if the account that gave you privileges has its privileges revoked.
1. You should have those privileges revoked as well. 2. You should have those privileges revoked, unless they were also granted to you by a still valid account. 3. You should still be granted your privileges, as they haven't been revoked directly. 4. You should scorn anyone with less privilege than you.

9 The admin account creates four accounts: A1, A2, A3, A4
admin executes: GRANT CREATETAB TO A1; -- A1 is allowed to create tables (account level) A1 executes: CREATE TABLE Employee (Name, SSN, ...) -- Because A1 created the table, it has full privileges on them. CREATE TABLE Department (Name, D_number, ...) -- See above GRANT INSERT, DELETE ON Employee, Department To A2; -- A2 can insert and delete in the tables GRANT SELECT ON Employee, Department TO A3 WITH GRANT OPTION; -- A3 can select and has the ability to propagate this privilege. A3 executes: GRANT SELECT ON Employee TO A4; -- A4 has select privilege (because A3 is allowed to propagate) REVOKE SELECT ON Employee FROM A3; -- A3 no longer can select on Employee (and neither can A4).

10 Role-Based Access Control
Often it is simpler to define organizational roles, assign privileges to each role, then assign accounts to a role. Example roles: Database Administrator: Full Privileges HR representative: Read and modification privileges on some of the tables Employee: Read privileges on self data but nothing else Sales Rep: Read (but not modify) privileges on product catalogue Accounts can be assigned multiple roles if needed.

Download ppt "Access Control."

Similar presentations

13 Copyright © Oracle Corporation, 2001. All rights reserved. Controlling User Access.

13 Copyright © Oracle Corporation, All rights reserved. Controlling User Access.
Chapter 23 Database Security and Authorization Copyright © 2004 Pearson Education, Inc.

Chapter 23 Database Security and Authorization Copyright © 2004 Pearson Education, Inc.
Jan. 2014Dr. Yangjun Chen ACS-49021 Database security and authorization (Ch. 22, 3 rd ed. – Ch. 23, 4 th ed. – Ch. 24, 6 th )

Jan. 2014Dr. Yangjun Chen ACS Database security and authorization (Ch. 22, 3 rd ed. – Ch. 23, 4 th ed. – Ch. 24, 6 th )
Database Management System

Database Management System
Copyright © 2011 Pearson Education, Inc. Publishing as Pearson Addison-Wesley Chapter 3 The Basic (Flat) Relational Model.

Copyright © 2011 Pearson Education, Inc. Publishing as Pearson Addison-Wesley Chapter 3 The Basic (Flat) Relational Model.
Security Fall 2006McFadyen ACS-49021 How do we protect the database from unauthorized access? Who can see employee salaries, student grades, … ? Who can.

Security Fall 2006McFadyen ACS How do we protect the database from unauthorized access? Who can see employee salaries, student grades, … ? Who can.
System Administration Accounts privileges, users and roles

System Administration Accounts privileges, users and roles
Oracle8 - The Complete Reference. Koch a& Loney1 By What Authority? Presented by Victor Matos.

Oracle8 - The Complete Reference. Koch a& Loney1 By What Authority? Presented by Victor Matos.
A Guide to MySQL 7. 2 Objectives Understand, define, and drop views Recognize the benefits of using views Use a view to update data Grant and revoke users’

A Guide to MySQL 7. 2 Objectives Understand, define, and drop views Recognize the benefits of using views Use a view to update data Grant and revoke users’
A Guide to SQL, Seventh Edition. Objectives Understand, create, and drop views Recognize the benefits of using views Grant and revoke user’s database.

A Guide to SQL, Seventh Edition. Objectives Understand, create, and drop views Recognize the benefits of using views Grant and revoke user’s database.
Chapter 6: Integrity and Security Thomas Nikl 19 October, 2004 CS157B.

Chapter 6: Integrity and Security Thomas Nikl 19 October, 2004 CS157B.
By Lecturer / Aisha Dawood 1.  Administering Users  Create and manage database user accounts.  Create and manage roles.  Grant and revoke privileges.

By Lecturer / Aisha Dawood 1.  Administering Users  Create and manage database user accounts.  Create and manage roles.  Grant and revoke privileges.
IS 221: DATABASE ADMINISTRATION Lecture 6:Create Users & Manage Users. Information Systems Department 1.

IS 221: DATABASE ADMINISTRATION Lecture 6:Create Users & Manage Users. Information Systems Department 1.
7 Copyright © 2004, Oracle. All rights reserved. Administering Users.

7 Copyright © 2004, Oracle. All rights reserved. Administering Users.
Controlling User Access. Objectives After completing this lesson, you should be able to do the following: Create users Create roles to ease setup and.

Controlling User Access. Objectives After completing this lesson, you should be able to do the following: Create users Create roles to ease setup and.
Chapter 6 Database Administration

Chapter 6 Database Administration
Copyright © 2013 Curt Hill Database Security An Overview with some SQL.

Copyright © 2013 Curt Hill Database Security An Overview with some SQL.
D ISCRETIONARY A CCESS C ONTROLS Truong Quynh Chi Faculty of Computer Science & Engineering HCMC University of Technology

D ISCRETIONARY A CCESS C ONTROLS Truong Quynh Chi Faculty of Computer Science & Engineering HCMC University of Technology
1 Chapter 6 Database Administration. 2 Introduction Database administration The process of managing a database Database administrator A person or an entire.

1 Chapter 6 Database Administration. 2 Introduction Database administration The process of managing a database Database administrator A person or an entire.
Copyright © 2007 Ramez Elmasri and Shamkant B. Navathe Chapter 6 Data Integrity and Security.

Copyright © 2007 Ramez Elmasri and Shamkant B. Navathe Chapter 6 Data Integrity and Security.

Similar presentations

Ads by Google