Dissertation
Dissertation > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Computer software > Program design,software engineering > Programming > Database theory and systems

Research on Purpose-based Access Control in Relational Database

Author HuHongQing
Tutor ZhuHong
School Huazhong University of Science and Technology
Course Computer Software and Theory
Keywords Purpose - based access control Purpose - based privacy policies Intention purpose Purpose of the visit
CLC TP311.13
Type Master's thesis
Year 2011
Downloads 10
Quotes 0
Download Dissertation

With the extensive application of information technology , a variety of user - generated information is more and more as a place to store user data , database stores a lot of data and user privacy . Traditional access control because of the drawbacks of the model itself , could lead to the disclosure of user privacy data users more stringent access requirements in order to protect their own privacy data , the visitors must be based on a purpose permitted by the user before data legitimate access , this demand can not be satisfied , and thus by the existing access control based on the purpose of access control has important significance in study database . Purpose - based access control system functional requirements , performance and safety requirements analysis ; given a purpose - based access control model , the model provides for access to the decision-making method , the method according to the definition of the legitimacy access to on the current user's access decision-making ; definition and classification and multi- purpose - based privacy policies , including their own roles and mixing multiple privacy policy three categories , and is given based on the purpose of the privacy policy for the three different types of cross and two merger rules . The overall structure of the design of the entire system . Extensions create a statement of purpose , to create restricted access to the object , and authorized , in the realization of the purpose - based access control system technology , and support based on the purpose of the privacy policy element definition and generation capabilities . Implementation module based on the purpose of the privacy policy , the multiple of the privacy policy based on destination merger algorithm given query dynamically modify the program , and gives a query to dynamically modify the algorithm , and then to update, delete and insert statements the extension . Finally, experiments show that the performance of the given purpose - based access control model , compared with the Byunn model some improvement compared to the original DBMS performance although there is some loss , but it is in the acceptable range .

Related Dissertations
More Dissertations