A Model for Evaluation and Administration of Security in Object-Oriented Databases

Eduardo B. Fernandez, Ehud Gudes, Haiyan Song

Research output: Contribution to journalArticlepeer-review

38 Scopus citations


The integration of object-oriented programming concepts with databases is one of the most significant advances in the evolution of database systems. Many aspects of such a combination have been studied, but there are few models to provide security for this richly structured information. We develop here an authorization model for object-oriented databases. This model consists of a set of policies, a structure for authorization rules, and algorithms to evaluate access requests against the authorization rules. User access policies are based on the concept of inherited authorization applied along the class structure hierarchy. We propose also a set of administrative policies that allow the control of user access and its decentralization. Finally, we study the effect of class structuring changes on authorization.

Original languageEnglish
Pages (from-to)275-292
Number of pages18
JournalIEEE Transactions on Knowledge and Data Engineering
Issue number2
StatePublished - 1 Jan 1994


  • Authorization models
  • database security
  • objectoriented databases
  • security administration
  • security of object-oriented systems

ASJC Scopus subject areas

  • Information Systems
  • Computer Science Applications
  • Computational Theory and Mathematics


Dive into the research topics of 'A Model for Evaluation and Administration of Security in Object-Oriented Databases'. Together they form a unique fingerprint.

Cite this