The authorization problem in shared files

Friedman, T. D.

doi:10.1147/sj.94.0258

Cited by 22 publications

(4 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The protection data, not to be confused with the protection specification, is data internal to the protection mechanism. Examples are passwords in case of the passwords protection mechan ism, or tags in Friedman's model [FRI70]. The protection procedure is analogous to programs or procedures in pro gramming systems and is the coded form of the protection mechanism algorithm.…”

Section: Basic Concepts In Data Base Securitymentioning

confidence: 99%

“…While such changes are pro hibited by the protection mechanism, the probability of failure, which is never zero, increases. An example of a late binding in which the chance for a "security flaw" is small, is Friedman's authorization model [FRI70]. To summarize, there are three issues involved with protection binding; efficiency, flexibility and the probability of a "security flaw".…”

Section: Procedures Protection Procedures Temporary Variables Protectiomentioning

confidence: 99%

See 1 more Smart Citation

The application of cryptography for data base security

Gudes

Koch

Stahl

1976

Proceedings of the June 7-10, 1976, National Computer Conference and Exposition on - AFIPS '76

View full text Add to dashboard Cite

This material was produced from a microfilm copy of the original document. While the most advanced technological means to photograph and reproduce this document have been used, the quality is heavily dependent upon the quality of the original submitted. The following explanation of techniques is provided to help you understand markings or patterns which may appear on this reproduction. 1. The sign or "target" for pages apparently lacking from the document photographed is "Missing Page(s)". If it was possible to obtain the missing page(s) or section, they are spliced into the film along with adjacent pages. This may have necessitated cutting thru an image and duplicating adjacent pages to insure you complete continuity. 2. When an image on the film is obliterated with a large round black mark, it is an indication that the photographer suspected that the copy may have moved during exposure and thus cause a blurred image. You will find a good image of the page in the adjacent frame. 3. When a map, drawing or chart, etc., was part of the material being photographed the photographer followed a definite method in "sectioning" the material. It is customary to begin photoing at the upper left hand corner of a large sheet and to continue photoing from left to right in equal sections with a small overlap. If necessary, sectioning is continued again-beginning below the first row and continuing on until complete. 4. The majority of users indicate that the textual content is of greatest value, however, a somewhat higher quality reproduction could be made from "photographs" if essential to the understanding of the dissertation. Silver prints of "photographs" may be ordered at additional charge by writing the Order Department, giving the catalog number, title, author and specific pages you wish reproduced. 5. PLEASE NOTE: Some pages may have indistinct print. Filmed as received.

show abstract

Section: Basic Concepts In Data Base Securitymentioning

confidence: 99%

Section: Procedures Protection Procedures Temporary Variables Protectiomentioning

confidence: 99%

The application of cryptography for data base security

Gudes

Koch

Stahl

1976

Proceedings of the June 7-10, 1976, National Computer Conference and Exposition on - AFIPS '76

View full text Add to dashboard Cite

show abstract

“…The need for access control in a data base management system has been discussed at length elsewhere [1, 3,4,5] and will not be further considered here. What is clearly required is an access control system which is flexible and powerful, yet simultaneously does not require undue execution time overhead.…”

Section: Introductionmentioning

confidence: 99%

Access control in a relational data base management system by query modification

Wong¹

1974

Proceedings of the 1974 Annual Conference on - ACM 74

109

View full text Add to dashboard Cite

This work describes the access control system being implemented in INGRES (l__N_Nteractive Graphics and REtrieval S~stem).The scheme can be applied to any relational data base management system and has several advantages over other suggested schemes.These include: a) implementation ease b) small execution time overhead c) powerful and flexible controls d) conceptual simplicity The basic idea utilized is that a user interaction with the data base is modified to an alternate form which is guaranteed to have no access violations. This modification takes place in a high level interaction language.Hence, the processing of a resulting interaction can be accomplished with no further regard for protection.In particular, any procedure calls in the access paths for control purposes, such as in [1,2], are avoided.

show abstract

“…In this general design a physical to logical mapping is used which takes the form of a tag on each piece of separately protectable data in the data base [FriT70]. This tag is maintained completely by the base kernel and the DMM has no knowledge of it.…”

Section: Employee Address)mentioning

confidence: 99%