Issue No.04 - July-August (1997 vol.9)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/69.617060
<p><b>Abstract</b>—Few studies of object-oriented databases deal with their security, a fundamental aspect of systems with complex data structures. Most authorization systems give users who own resources only some basic control over them; here, we provide users with more direct control over their resources by associating with each grant propagation numbers. Propagation numbers govern the grantability and exercisability of the privileges. Of particular interest in our study of authorization in an o-o environment is the combination of inheritance and granting of privileges. Diverse policies are discussed and implemented in a test-bed system.</p>
Object-oriented systems, inheritance, granting, revoking, bounded propagation of privileges.
Ivo Majetic, Ernst L. Leiss, "Authorization and Revocation in Object-Oriented Databases", IEEE Transactions on Knowledge & Data Engineering, vol.9, no. 4, pp. 668-672, July-August 1997, doi:10.1109/69.617060