all InfoSec news
XACML Extension for Graphs: Flexible Authorization Policy Specification and Datastore-independent Enforcement. (arXiv:2306.12819v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
The increasing use of graph-structured data for business- and
privacy-critical applications requires sophisticated, flexible and fine-grained
authorization and access control. Currently, role-based access control is
supported in graph databases, where access to objects is restricted via roles.
This does not take special properties of graphs into account such as vertices
and edges along the path between a given subject and resource. In previous
iterations of our research, we started to design an authorization policy
language and access control model, which …
access access control account applications authorization business control critical data databases enforcement extension for business graphs policy privacy restricted role role-based access control roles special structured data