ReLOG: A Unified Framework for Relationship-Based Access Control over Graph Databases

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

4 Citaten (Scopus)

Samenvatting

Relationship-Based Access Control (ReBAC) is a paradigm to specify access constraints in terms of interpersonal relationships. To express these graph-like constraints, a variety of ReBAC models with varying features and ad-hoc implementations have been proposed. In this work, we investigate the theoretical feasibility of realising ReBAC systems using off-the-shelf graph database technology and propose a unified framework through which we characterise and compare existing ReBAC models. To this end, we formalise a ReBAC specific query language, ReLOG, an extension to regular graph queries over property graphs. We show that existing ReBAC models are instantiations of queries over property graphs, laying a foundation for the design of ReBAC mechanisms based on graph database technology.

Originele taal-2Engels
TitelData and Applications Security and Privacy XXXVI - 36th Annual IFIP WG 11.3 Conference, DBSec 2022, Proceedings
RedacteurenShamik Sural, Haibing Lu
UitgeverijSpringer
Pagina's303-315
Aantal pagina's13
ISBN van geprinte versie9783031106835
DOI's
StatusGepubliceerd - 2022
Evenement36th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2022 - Newark, Verenigde Staten van Amerika
Duur: 18 jul. 202220 jul. 2022

Publicatie series

NaamLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume13383 LNCS
ISSN van geprinte versie0302-9743
ISSN van elektronische versie1611-3349

Congres

Congres36th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2022
Land/RegioVerenigde Staten van Amerika
StadNewark
Periode18/07/2220/07/22

Bibliografische nota

Publisher Copyright:
© 2022, IFIP International Federation for Information Processing.

Vingerafdruk

Duik in de onderzoeksthema's van 'ReLOG: A Unified Framework for Relationship-Based Access Control over Graph Databases'. Samen vormen ze een unieke vingerafdruk.

Citeer dit