Skip to main page content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access keys NCBI Homepage MyNCBI Homepage Main Content Main Navigation
. 2021 Apr:2021:317-319.
doi: 10.1145/3422337.3450323. Epub 2021 Apr 26.

Attribute-Based Access Control for NoSQL Databases

Eeshan Gupta  1 Shamik Sural  1 Jaideep Vaidya  2 Vijayalakshmi Atluri  2
Affiliations

Attribute-Based Access Control for NoSQL Databases

Eeshan Gupta et al. CODASPY. 2021 Apr.

Abstract

NoSQL databases are gaining popularity in recent times for their ability to manage high volumes of unstructured data efficiently. This necessitates such databases to have strict data security mechanisms. Attribute-Based Access Control (ABAC) has been widely appreciated for its high flexibility and dynamic nature. We present an approach for integrating ABAC into NoSQL databases, specifically MongoDB, that typically only support Role-Based Access Control (RBAC). We also discuss an implementation and performance results for ABAC in MongoDB, while emphasizing that it can be extended to other NoSQL databases as well.

PubMed Disclaimer

Figures

Figure 1:
Figure 1:
Summary of the ABAC System
Figure 2:
Figure 2:
Find operation (a) before, (b) after adding the rules
Figure 3:
Figure 3:
Time taken to enforce ABAC with varying number of users and (a) user attributes, (b) rules
See this image and copyright information in PMC

References

    1. Batra G, Atluri V, Vaidya J, & Sural S (2019). Deploying ABAC policies using RBAC Systems. Journal of computer security, 27(4), 483–506. - PMC - PubMed
    1. Ene A, Horne B, Milosavljevic N, Rao P, Schreiber R, & Tarjan R (2008). Fast exact and heuristic methods for role minimization problems. 2008 ACM Symposium on Access Control Models and Technologies (SACMAT).
    1. Colombo P, & Ferrari E (2017). Towards a Unifying Attribute Based Access Control Approach for NoSQL Datastores. 2017 IEEE 33rd International Conference on Data Engineering (ICDE), 709–720.
    1. Okman L, Gal-Oz N, Gonen Y, Gudes E, & Abramov J (2011). Security Issues in NoSQL Databases. 2011 IEEE 10th International Conference on Trust, Security and Privacy in Computing and Communications, 541–547.
    1. DB-Engine Rankings. Retrieved January 9, 2021 from https://db-engines.com/en/ranking

LinkOut - more resources