Abstract
Several access control models for database management systems (DBMS) only consider how to manage select queries and then assume that similar mechanism would apply to update queries. However they do not take into account that updating data may possibly disclose some other sensitive data whose access would be forbidden through select queries. This is typically the case of current relational DBMS managed through SQL which are wrongly specified and lead to inconsistency between select and update queries. In this paper, we show how to solve this problem in the case of SPARQL queries. We present an approach based on rewriting SPARQL/Update queries. It involves two steps. The first one satisfies the update constraints. The second one handles consistency between select and update operators. Query rewriting is done by adding positive and negative filters (corresponding respectively to permissions and prohibitions) to the initial query. © 2010 Springer-Verlag.
Cite
CITATION STYLE
Oulmakhzoune, S., Cuppens-Boulahia, N., Cuppens, F., & Morucci, S. (2010). Rewriting of SPARQL/update queries for securing data access. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6476 LNCS, pp. 4–15). https://doi.org/10.1007/978-3-642-17650-0_2
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
