Skip to Main content Skip to Navigation
Conference papers

Cryptographically Enforced Role-Based Access Control for NoSQL Distributed Databases

Abstract : The support for Role-Based Access Control (RBAC) using cryptography for NOSQL distributed databases is investigated. Cassandra is a NoSQL DBMS that efficiently supports very large databases, but provides rather simple security measures (an agent having physical access to a Cassandra cluster is usually assumed to have access to all data therein). Support for RBAC had been added almost as an afterthought, with the Node Coordinator having to mediate all requests to read and write data, in order to ensure that only the requests allowed by the Access Control Policy (ACP) are allowed through.In this paper, we propose a model and protocols for cryptographic enforcement of an ACP in a cassandra like system, which would ease the load on the Node Coordinator, thereby taking the bottleneck out of the existing security implementation. We allow any client to read the data from any storage node(s) – provided that only the clients whom the ACP grants access to a datum, would hold the encryption keys that enable these clients to decrypt the data.
Document type :
Conference papers
Complete list of metadata

Cited literature [14 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, January 15, 2018 - 2:06:48 PM
Last modification on : Tuesday, May 14, 2019 - 1:50:22 PM
Long-term archiving on: : Monday, May 7, 2018 - 4:15:58 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



yossif Shalabi, Ehud Gudes. Cryptographically Enforced Role-Based Access Control for NoSQL Distributed Databases. 31th IFIP Annual Conference on Data and Applications Security and Privacy (DBSEC), Jul 2017, Philadelphia, PA, United States. pp.3-19, ⟨10.1007/978-3-319-61176-1_1⟩. ⟨hal-01684347⟩



Record views


Files downloads