D. N. Kolegov, N. O. Tkachenko, “Lightweight implementation of ABAC mechanism on Database Firewall”, Prikl. Diskr. Mat. Suppl., 2016, no. 9, 93

Prikladnaya Diskretnaya Matematika. Supplement

RUS ENG

JOURNALS PEOPLE ORGANISATIONS CONFERENCES SEMINARS VIDEO LIBRARY PACKAGE AMSBIB

JavaScript is disabled in your browser. Please switch it on to enable full functionality of the website

	General information
	Latest issue
	Archive

	Search papers
	Search references

	RSS
	Latest issue
	Current issues
	Archive issues
	What is RSS

Prikl. Diskr. Mat. Suppl.:
Year:
Volume:
Issue:
Page:
	Find

Personal entry:
Login:
Password:
	Save password
	Enter
	Forgotten password?
	Register

Prikladnaya Diskretnaya Matematika. Supplement, 2016, Issue 9, Pages 93–95
DOI: https://doi.org/10.17223/2226308X/9/36 (Mi pdma282)

This article is cited in 1 scientific paper (total in 1 paper)

Mathematical Foundations of Computer Security

Lightweight implementation of ABAC mechanism on Database Firewall

D. N. Kolegov^ab, N. O. Tkachenko^ab

^a Tomsk State University, Tomsk
^b "Positive Technologies", Tomsk

Full-text PDF (475 kB) Citations (1)

References:

PDF

HTML

DOI: https://doi.org/10.17223/2226308X/9/36

Abstract: We propose a lightweight non-invasive method for implementing attribute based access control for RDBMS $MySQL$ on $Database Firewall$. Implemented access control mechanism consists of two parts. According to NIST ABAC terminology, the first part is Policy Enforcement Point (PEP) and the second one is Policy Decision Point (PDP). PDP and PEP communicate using HTTP protocol. PEP is handling SQL queries from client, parsing it and sending to PDP via HTTP. PDP implements lightweight core of ABAC. The main purpose of this part is taking a decision to permit or deny access based on stored policies. After the decision is made, PDP sends it to PEP. We developed a new role view mechanism to combine RBAC and ABAC. This mechanism is used to translate privileges from RBAC roles to ABAC rules. ABAC rules are configured using a special language named AF Rules and specified in JSON format. These rules are translated to PDP code, which implements access control checks.

Keywords: access control, ABAC, RBAC, Database Firewall.

Document Type: Article

UDC: 004.94

Language: Russian

Citation: D. N. Kolegov, N. O. Tkachenko, “Lightweight implementation of ABAC mechanism on Database Firewall”, Prikl. Diskr. Mat. Suppl., 2016, no. 9, 93–95

Citation in format AMSBIB

\Bibitem{KolTka16}

\by D.~N.~Kolegov, N.~O.~Tkachenko

\paper Lightweight implementation of ABAC mechanism on Database Firewall

\jour Prikl. Diskr. Mat. Suppl.

\yr 2016

\issue 9

\pages 93--95

\mathnet{http://mi.mathnet.ru/pdma282}

\crossref{https://doi.org/10.17223/2226308X/9/36}

Linking options:

https://www.mathnet.ru/eng/pdma282

https://www.mathnet.ru/eng/pdma/y2016/i9/p93

This publication is cited in the following 1 articles:

Citing articles in Google Scholar: Russian citations, English citations
Related articles in Google Scholar: Russian articles, English articles

Prikladnaya Diskretnaya Matematika. Supplement

Statistics & downloads:
Abstract page:	170
Full-text PDF :	77
References:	43

Что такое QR-код?

Registration to the website

Logotypes