From MDM to DB2: A Case Study of Security Enforcement Migration

Nikolay Yakovets; Jarek Gryz; Stephanie Hazlewood; Paul Run

doi:10.1007/978-3-642-31540-4_16

Conference papers

From MDM to DB2: A Case Study of Security Enforcement Migration

Nikolay Yakovets ^{1, 2} Jarek Gryz ^{1, 2} Stephanie Hazlewood ² Paul Run ²

1 department of Computer Science and Engineering

2 Center for Advanced Studies [IBM CAS Canada]

Abstract : This work presents a case study of a migration of attribute-based access control enforcement from the application to the database tier. The proposed migration aims to improve the security and simplify the audit of the enterprise system by enforcing information protection principles of the least privileges and the least common mechanism. We explore the challenges of such migration and implement it in an industrial setting in a context of master data management where data security, privacy and audit are subject to regulatory compliance. Based on our implementation, we propose a general, standards-driven migration methodology.

Keywords : Master Data Management Enterprise Security Attribute-Based Access Control Database Security XACML DB2

Document type :

Conference papers

Domain :

Computer Science [cs]

Complete list of metadata

https://hal.inria.fr/hal-01534771
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, June 8, 2017 - 11:06:36 AM
Last modification on : Thursday, June 8, 2017 - 11:09:27 AM
Long-term archiving on: : Saturday, September 9, 2017 - 12:51:34 PM

From MDM to DB2: A Case Study of Security Enforcement Migration

File

Licence

Identifiers

Collections

Citation

Export

Metrics

117

90

Contact Legal Notice Personal Data

From MDM to DB2: A Case Study of Security Enforcement Migration

File

Licence

Identifiers

Collections

Citation

Export

Share

Metrics

117

90

Contact Legal Notice Personal Data