联合阈值管理模型

2010 IEEE International Symposium on Policies for Distributed Systems and Networks Pub Date : 2010-03-30 DOI:10.1109/POLICY.2010.34

Ashish Kamra, E. Bertino

{"title":"联合阈值管理模型","authors":"Ashish Kamra, E. Bertino","doi":"10.1109/POLICY.2010.34","DOIUrl":null,"url":null,"abstract":"We propose a Joint Threshold Administration Model (JTAM) for performing certain critical and sensitive database operations such as user/role permission assignment, user/role creation, and so forth. The key idea is that a JTAM enabled operation is incomplete unless it is authorized by at least k - 1 additional DBAs. We present the design details of JTAM based on a cryptographic threshold signature scheme. We implement JTAM in the PostgreSQL DBMS, and demonstrate the execution of the JTAM enabled SQL GRANT command. We also show how to prevent malicious modifications to the JTAM enabled operations.","PeriodicalId":143330,"journal":{"name":"2010 IEEE International Symposium on Policies for Distributed Systems and Networks","volume":"22 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-03-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"JTAM - A Joint Threshold Administration Model\",\"authors\":\"Ashish Kamra, E. Bertino\",\"doi\":\"10.1109/POLICY.2010.34\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"We propose a Joint Threshold Administration Model (JTAM) for performing certain critical and sensitive database operations such as user/role permission assignment, user/role creation, and so forth. The key idea is that a JTAM enabled operation is incomplete unless it is authorized by at least k - 1 additional DBAs. We present the design details of JTAM based on a cryptographic threshold signature scheme. We implement JTAM in the PostgreSQL DBMS, and demonstrate the execution of the JTAM enabled SQL GRANT command. We also show how to prevent malicious modifications to the JTAM enabled operations.\",\"PeriodicalId\":143330,\"journal\":{\"name\":\"2010 IEEE International Symposium on Policies for Distributed Systems and Networks\",\"volume\":\"22 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-03-30\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 IEEE International Symposium on Policies for Distributed Systems and Networks\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/POLICY.2010.34\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 IEEE International Symposium on Policies for Distributed Systems and Networks","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/POLICY.2010.34","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

我们提出了一个联合阈值管理模型(JTAM)，用于执行某些关键和敏感的数据库操作，如用户/角色权限分配、用户/角色创建等。关键思想是，启用JTAM的操作是不完整的，除非它得到至少k - 1个额外dba的授权。提出了一种基于密码门限签名方案的JTAM的设计细节。我们在PostgreSQL DBMS中实现了JTAM，并演示了启用JTAM的SQL GRANT命令的执行。我们还将展示如何防止对启用JTAM的操作进行恶意修改。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

JTAM - A Joint Threshold Administration Model

We propose a Joint Threshold Administration Model (JTAM) for performing certain critical and sensitive database operations such as user/role permission assignment, user/role creation, and so forth. The key idea is that a JTAM enabled operation is incomplete unless it is authorized by at least k - 1 additional DBAs. We present the design details of JTAM based on a cryptographic threshold signature scheme. We implement JTAM in the PostgreSQL DBMS, and demonstrate the execution of the JTAM enabled SQL GRANT command. We also show how to prevent malicious modifications to the JTAM enabled operations.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2010 IEEE International Symposium on Policies for Distributed Systems and Networks

自引率

0.00%

发文量