Security
1)Discernationry
a)Authorisation (GRANT select,..ON table TO .) [Value-independent]
b)Views (CREATE VIEW name as ... )[Value-dependent]
-updating is problematic
2)Mandatory Access Control
-Practical for Mulit-lvl security
-Classification of object
-Group User
ie clearance lvl Unclassified, Confidential, Secret
-Can Read lower only (null if cannot see)
-Can Write higher only
Each tuple with own classification (TC) [match this first then attribute]
Each attribute with Classification (C) clearance
3)Statistical DB security
-no personal info
Tuesday, October 30, 2007
Subscribe to:
Post Comments (Atom)
1 comment:
People should read this.
Post a Comment