In this demo proposal, we illustrate ACStream, a system built on top of Stream Base [1], to specify and enforce access control policies over data streams. ACStream supports a very flexible role-based access control model specifically designed to protect against unauthorized access to streaming data. The core component of ACStream is a query rewriting mechanism that, by exploiting a set of secure operators proposed by us in [2], rewrites a user query in such a way that it does not violate the specified access control policies during its execution. The demo will show how policies modelling a variety of access control requirements can be easily specified and enforced using ACStream.
展开▼
机译:在此演示建议中,我们说明了ACStream,这是一种基于Stream Base [1]构建的系统,用于指定和实施对数据流的访问控制策略。 ACStream支持非常灵活的基于角色的访问控制模型,该模型专门用于防止未经授权的流数据访问。 ACStream的核心组件是查询重写机制,它利用我们在[2]中提出的一组安全运算符,以一种在执行过程中不违反指定访问控制策略的方式来重写用户查询。该演示将展示如何使用ACStream轻松指定和实施对各种访问控制要求进行建模的策略。
展开▼
