In this thesis, we present a model of the authorization that supports the content-dependent access control on instances of classes. So far, several models of the authorization for object-oriented databases have been proposed. However, most of these models do not support the authorization based on the database content.
This thesis shows how the traditional content-independent authorization model can be extended to provide the content-dependent authorization using predicates on the values of attributes of a class. The proposed model makes it possible to group objects that satisfy the specified conditions on the values of the objects and to grant a single authorization on those objects. This model supports the negative authorization and provides the concept of the strong and weak authorization to resolve conflicts between positive and negative authorizations.
In this thesis, we present a model of the authorization that supports the content-dependent access control on instances of classes. So far, several models of the authorization for object-oriented databases have been proposed. However, most of these models do not support the authorization based on the database content. This thesis shows how the traditional content-independent authorization model can be extended to provide the content-dependent authorization using predicates on the values of attributes of a class. The proposed model makes it possible to group objects that satisfy the specified conditions on the values of the objects and to grant a single authorization on those objects. This model supports the negative authorization and provides the concept of the strong and weak authorization to resolve conflicts between positive and negative authorizations. In this thesis, we address some of the problems that arise when the predicates are associated with authorization. In particular, the authorization operations of the traditional content-independent model become inadequate for our model. So, we redefine the semantics and the algorithms of the authorization operations.