ReLOG: A Unified Framework for Relationship-Based Access Control over Graph Databases

被引:4
|
作者
Clark, Stanley [1 ]
Yakovets, Nikolay [1 ]
Fletcher, George [1 ]
Zannone, Nicola [1 ]
机构
[1] Eindhoven Univ Technol, NL-5600 MB Eindhoven, Netherlands
来源
DATA AND APPLICATIONS SECURITY AND PRIVACY XXXVI, DBSEC 2022 | 2022年 / 13383卷
关键词
D O I
10.1007/978-3-031-10684-2_17
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Relationship-Based Access Control (ReBAC) is a paradigm to specify access constraints in terms of interpersonal relationships. To express these graph-like constraints, a variety of ReBAC models with varying features and ad-hoc implementations have been proposed. In this work, we investigate the theoretical feasibility of realising ReBAC systems using off-the-shelf graph database technology and propose a unified framework through which we characterise and compare existing ReBAC models. To this end, we formalise a ReBAC specific query language, ReLOG, an extension to regular graph queries over property graphs. We show that existing ReBAC models are instantiations of queries over property graphs, laying a foundation for the design of ReBAC mechanisms based on graph database technology.
引用
收藏
页码:303 / 315
页数:13
相关论文
共 50 条
  • [1] A Datalog Framework for Modeling Relationship-based Access Control Policies
    Pasarella, Edelmira
    Lobo, Jorge
    PROCEEDINGS OF THE 22ND ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES (SACMAT'17), 2017, : 91 - 102
  • [2] An Administrative Model for Relationship-Based Access Control
    Stoller, Scott D.
    Data and Applications Security and Privacy XXIX, 2015, 9149 : 53 - 68
  • [3] Mining Relationship-Based Access Control Policies
    Thang Bui
    Stoller, Scott D.
    Li, Jiajie
    PROCEEDINGS OF THE 22ND ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES (SACMAT'17), 2017, : 239 - 246
  • [4] Policy templates for relationship-based access control
    Aktoudianakis, Evangelos
    Crampton, Jason
    Schneider, Steve
    Treharne, Helen
    Waller, Adrian
    2013 ELEVENTH ANNUAL INTERNATIONAL CONFERENCE ON PRIVACY, SECURITY AND TRUST (PST), 2013, : 221 - 228
  • [5] A graph based framework for multiparadigmatic visual access to databases
    Catarci, T
    Chang, SK
    Costabile, MF
    Levialdi, S
    Santucci, G
    IEEE TRANSACTIONS ON KNOWLEDGE AND DATA ENGINEERING, 1996, 8 (03) : 455 - 475
  • [6] Active Learning of Relationship-Based Access Control Policies
    Iyer, Padmavathi
    Masoumzadeh, Amirreza
    SACMAT'20: PROCEEDINGS OF THE 25TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, 2020, : 155 - 166
  • [7] Security Analysis of Relationship-Based Access Control Policies
    Masoumzadeh, Amirreza
    PROCEEDINGS OF THE EIGHTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY (CODASPY'18), 2018, : 186 - 195
  • [8] Performance analysis of Relationship-Based Access Control in OSNs
    Carminati, Barbara
    Ferrari, Elena
    Girardi, Jacopo
    2012 IEEE 13TH INTERNATIONAL CONFERENCE ON INFORMATION REUSE AND INTEGRATION (IRI), 2012, : 449 - 456
  • [9] Relationship-based access control: More than a social network access control model
    Lobo, Jorge
    WILEY INTERDISCIPLINARY REVIEWS-DATA MINING AND KNOWLEDGE DISCOVERY, 2019, 9 (02)
  • [10] Classifying and Comparing Attribute-Based and Relationship-Based Access Control
    Ahmed, Tahmina
    Sandhu, Ravi
    Park, Jaehong
    PROCEEDINGS OF THE SEVENTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY (CODASPY'17), 2017, : 59 - 70
12345