Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • Authorization Annotated

    Încărcat de

    asim_ubit
    11 vizualizări13 pagini
    Authorization annotated http://www.mytrickslab.com/

    Titlu original

    Authorization annotated.ppt

    Drepturi de autor

    © Attribution Non-Commercial (BY-NC)

    Formate disponibile

    PPTX, PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    Authorization annotated http://www.mytrickslab.com/

    Drepturi de autor:

    Attribution Non-Commercial (BY-NC)
    Descărcați ca PPTX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    11 vizualizări13 pagini

    Authorization Annotated

    Încărcat de

    asim_ubit
    Authorization annotated http://www.mytrickslab.com/

    Drepturi de autor:

    Attribution Non-Commercial (BY-NC)
    Descărcați ca PPTX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 13

    Authorization

    Jennifer Widom

    Database Authorization

    Authorization

    Make sure users see only the data theyre supposed to see
    Guard the database against modifications by malicious users

    Jennifer Widom

    Database Authorization

    Authorization

    Users have privileges; can only operate on data for which they are authorized
    Select on R or Select(A1,,An) on R Insert on R or Insert(A1,,An) on R Update on R or Update(A1,,An) on R Delete on R

    Jennifer Widom

    Update Apply Set dec = Y Where sID In (Select sID From Student Where GPA > 3.9)

    Authorization

    College
    cName state enr sID

    Student
    sName GPA HS sID

    Apply
    cName major dec

    Jennifer Widom

    Delete From Student Where sID Not In (Select sID From Apply)

    Authorization

    College
    cName state enr sID

    Student
    sName GPA HS sID

    Apply
    cName major dec

    Jennifer Widom

    Select student info for Stanford applicants only

    Authorization

    Create View SS As Select * From Student Where sID In (Select sID From Apply Where cName =Stanford)

    College
    cName state enr sID

    Student
    sName GPA HS sID

    Apply
    cName major dec

    Jennifer Widom

    Delete Berkeley applications only

    Authorization

    Create View BA As Select * From Apply Where cName =Berkeley

    College
    cName state enr sID

    Student
    sName GPA HS sID

    Apply
    cName major dec

    Jennifer Widom

    Obtaining Privileges

    Authorization

    Relation creator is owner Owner has all privileges and may grant privileges
    Grant privs On R To users [ With Grant Option ]

    Jennifer Widom

    Revoking Privileges
    Revoke privs On R From users [ Cascade | Restrict ]

    Authorization

    Jennifer Widom

    Revoking Privileges
    Revoke privs On R From users [ Cascade | Restrict ]

    Authorization

    Cascade: Also revoke privileges granted from privileges being revoked (transitively), unless also granted from another source

    Jennifer Widom

    Revoking Privileges
    Revoke privs On R From users [ Cascade | Restrict ]

    Authorization

    Restrict: Disallow if Cascade would revoke any other privileges

    Jennifer Widom

    Where Privileges Reside


    Even more software

    Authorization
    End user

    More software

    Database application developer

    DBMS
    Data
    Jennifer Widom

    Database Authorization

    Authorization

    Make sure users see only the data theyre supposed to see Guard the database against modifications by malicious users Users have privileges; can only operate on data for which they are authorized Grant and Revoke statements Beyond simple table-level privileges: use views
    Jennifer Widom

    S-ar putea să vă placă și