A Flexible Database Authorization System

B. Blicharski and K. Stencel (Poland)


database security, role, privilege, view, INSTEAD trigger


In this paper we present an authorization mechanism for a relational database. It allows defining the user privileges exact to a table row. To implement that we used the INSTEAD triggers installed on views. This authorization system is an interesting application of such triggers. The user privileges are organized into parameterized roles that can be instantiated and/or inherited by other roles.

Important Links:

Go Back