Implementation of vertically bounded propagation of privileges in a relational database system



Journal Title

Journal ISSN

Volume Title



With the ever-increasing use of computers for storing large volumes of vital data, in order to provide protection and data security, an authorization mechanism must permit information to be accessed only by properly authorized users. The Griffiths/Wade Authorization mechanism of IBM's System R assumes a relational database in which the information concerning grants with or without grant-option of privileges; E.L. Leiss first introduced and discussed the notion of bounded propagation of privileges. In our implementation, we will implement the authorization system with vertically bounded propagation of privileges in the relational database system REQUEST. Our main objective of implementing this authorization system is to determine whether a user is authorized to access a data object in a certain prespecified way, and if not how to prevent this unauthorized access within the framework of a given system or model.



Computers--Access control, Electronic data processing departments--Security measures