Saved in:
Bibliographic Details
Main Authors: Mohamed, Aya, Auer, Dagmar, Hofer, Daniel, Kueng, Josef
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2405.20762
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866910465483866112
author Mohamed, Aya
Auer, Dagmar
Hofer, Daniel
Kueng, Josef
author_facet Mohamed, Aya
Auer, Dagmar
Hofer, Daniel
Kueng, Josef
contents Access control is the enforcement of the authorization policy, which defines subjects, resources, and access rights. Graph-structured data requires advanced, flexible, and fine-grained access control due to its complex structure as sequences of alternating vertices and edges. Several research works focus on protecting property graph-structured data, enforcing fine-grained access control, and proving the feasibility and applicability of their concept. However, they differ conceptually and technically. We select works from our systematic literature review on authorization and access control for different database models in addition to recent ones. Based on defined criteria, we exclude research works with different objectives, such as no protection of graph-structured data, graph models other than the property graph, coarse-grained access control approaches, or no application in a graph datastore (i.e., no proof-of-concept implementation). The latest version of the remaining works are discussed in detail in terms of their access control approach as well as authorization policy definition and enforcement. Finally, we analyze the strengths and limitations of the selected works and provide a comparison with respect to different aspects, including the base access control model, open/closed policy, negative permission support, and datastore-independent enforcement.
format Preprint
id arxiv_https___arxiv_org_abs_2405_20762
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Comparison of Access Control Approaches for Graph-Structured Data
Mohamed, Aya
Auer, Dagmar
Hofer, Daniel
Kueng, Josef
Cryptography and Security
Access control is the enforcement of the authorization policy, which defines subjects, resources, and access rights. Graph-structured data requires advanced, flexible, and fine-grained access control due to its complex structure as sequences of alternating vertices and edges. Several research works focus on protecting property graph-structured data, enforcing fine-grained access control, and proving the feasibility and applicability of their concept. However, they differ conceptually and technically. We select works from our systematic literature review on authorization and access control for different database models in addition to recent ones. Based on defined criteria, we exclude research works with different objectives, such as no protection of graph-structured data, graph models other than the property graph, coarse-grained access control approaches, or no application in a graph datastore (i.e., no proof-of-concept implementation). The latest version of the remaining works are discussed in detail in terms of their access control approach as well as authorization policy definition and enforcement. Finally, we analyze the strengths and limitations of the selected works and provide a comparison with respect to different aspects, including the base access control model, open/closed policy, negative permission support, and datastore-independent enforcement.
title Comparison of Access Control Approaches for Graph-Structured Data
topic Cryptography and Security
url https://arxiv.org/abs/2405.20762