Research On SRBAC Model For Security Spatial DBMS SECVISTA

Security spatial DBMS, which is an important branch of the current information security research, has wide application future. This research has strong region and confidentiality. The developed countries forbid exporting security products to our country, including database products. So, it is a important mean to develop security products by ourselves, so as to protect information security.RBAC model have progressed rapidly, not only because it's easy to be managed, but also the less complexity, cost and probability of make mistakes. Under some environment, the requests of user's access will be changed with the users' location. For example, the customer hold a roles ,which own the right to open the strongbox in the customer-management system. In fact the customer only can open it around the strongbox ,when the bank open for business.So the role need the constraint with spatial characteristic to control on the situation.It is necessary to study RBAC further.This paper take our embedded secure spatial DBMS—SECVISTA, which has been developed by ourselves as platform to research SRBAC model in detail, in order to strengthen the capability of safety expression for RBAC with spatial character,optimize the theory of secure DBMS and afford the theory to build the stricter system for bank ,bond and military. This paper confirms a non-blocked sessions set at any spatial location and presents a algorithm, which introduce the function of "Next Spatial Location" and bring forward a optimization algorithm that exams these constraints rules to guarantee the system's security and practicability. At the same time, the role hierarchy has been discussed in spatial environment. And this paper researched region coverage constraint of spatial object, duration constraint of spatial object, various spatial object separation of duty constraints(SoDs) and spatial object cardinality constraint of role activation, based on the spatial role-based access control model(SRBAC).This paper briefly describes our embedded secure spatial DBMS-----SECVISTA,which has been developed by ourselves, focusing on storage mechanism and access control strategy. Finally, this paper depicts how to implement SRBAC, based on SECVISTA.