|
DRUM >
College of Computer, Mathematical & Physical Sciences >
Computer Science >
Technical Reports of the Computer Science Department >
Please use this identifier to cite or link to this item:
http://hdl.handle.net/1903/9029
|
| Title: | XTOLS: Cross-tier Oracle Label Security |
| Authors: | An, Jong-hoon (David) |
| Type: | Technical Report |
| Issue Date: | 8-Apr-2009 |
| Series/Report no.: | UM Computer Science Department
CS-TR-4934 |
| Abstract: | SELinks allows cross-tier security enforcement between the application tier and the database tier by compiling policy functions and database queries into user-defined functions (UDFs) and SQL queries. Unfortunately, this kind of enforcement is restricted to the policies written within SELinks framework; and therefore, it does not take into account the existing policies in the database. Furthermore,
the data in the database may be vulnerable to unauthorized access because the database does not necessarily enforce the security policies intended by the application. To support fine-grained access control over sensitive data, Oracle introduced Oracle Label Security (OLS) technology, starting from Oracle 8i. However, there has been no previous work to incorporate this technology into the application framework. In this paper, we discuss how OLS security policies can be encoded in SELinks and enforced between the application and the database. We have implemented an extension of current SELinks, called Cross-tier Oracle Label Security (XTOLS), that provides a secure and extensible programming environment to programmers. |
| URI: | http://hdl.handle.net/1903/9029 |
| Appears in Collections: | Technical Reports of the Computer Science Department
|
Files in This Item:
| File |
Description |
Size | Format | No. of Downloads |
|---|
| tr.pdf | | 294.01 kB | Adobe PDF | 60 | View/Open |
|
All items in DRUM are protected by copyright, with all rights reserved.
|
