Professional Documents
Culture Documents
Authorization
Prof. Kirtankumar Rathod
Dept. of Computer Science
ISHLS, Indus University
1
Types of Security Issues:
• Database security includes the following,
3
Two types of database security mechanism:
1. Discretionary (Flexible) security mechanisms
These are used to grant privileges to users to access specific data
files, records or fields in a specified mode.
4
Database Security and the DBA:
• The DBA’s responsibilities include granting privileges to users who
need to use the system and classifying users and data in accordance
with the policy of the organization.
5
Discretionary Access Control based on
Granting and Revoking Privileges:
• There are two levels for assigning privileges to use the database
system:
1. The account level:
The DBA specifies the particular privileges that each account
holds independently of the relations in the database.
6
Syntax of Grant and Revoke command in
SQL
• GRANT privilege_name ON object_name
TO {user_name |PUBLIC |role_name}
[WITH GRANT OPTION];
9
Mandatory Access Control & Role-based
Access Control for Multilevel Security
• Bell-LaPadula model is used for multilevel security.
• This model classifies each subject (user, account, program) and object
(relation, tuple, column, view, operation) into one of the security classes.
10
Example of multi-level relation:
11