English
Related papers

Related papers: Optimising Fine-Grained Access Control Policy Enfo…

200 papers

User authorization queries in the context of role-based access control have attracted considerable interest in the last 15 years. Such queries are used to determine whether it is possible to allocate a set of roles to a user that enables…

Cryptography and Security · Computer Science 2021-04-14 Jason Crampton , Gregory Gutin , Diptapriyo Majumdar

Role-Based Access Control (RBAC) struggles to adapt to dynamic enterprise environments with documents that contain information that cannot be disclosed to specific user groups. As these documents are used by LLM-driven systems (e.g., in…

Cryptography and Security · Computer Science 2025-12-24 Michele Lorenzo , Idilio Drago , Dario Salvadori , Fabio Romolo Vayr

Traditional database access control mechanisms use role based methods, with generally row based and attribute based constraints for granularity, and privacy is achieved mainly by using views. However if only a set of views according to…

Databases · Computer Science 2014-07-18 Ugur Turan , Ismail Hakki Toroslu

Context: Database-backed applications often run queries with more authority than necessary. Since programs can access more data than they legitimately need, flaws in security checks at the application level can enable malicious or buggy…

Programming Languages · Computer Science 2019-09-27 Ezra Zigmond , Stephen Chong , Christos Dimoulas , Scott Moore

The task of generating a database query from a question in natural language suffers from ambiguity and insufficiently precise description of the goal. The problem is amplified when the system needs to generalize to databases unseen at…

Computation and Language · Computer Science 2022-10-14 Anton Osokin , Irina Saparina , Ramil Yarullin

Grading SQL queries can be a time-consuming, tedious and challenging task, especially as the number of student submissions increases. Several systems have been introduced in an attempt to mitigate these challenges, but those systems have…

Computers and Society · Computer Science 2024-06-25 Donald R. Schwartz , Pablo Rivas

In pattern mining, sequential rules provide a formal framework to capture the temporal relationships and inferential dependencies between items. However, the discovery process is computationally intensive. To obtain mining results…

Databases · Computer Science 2026-02-20 Wensheng Gan , Gengsen Huang , Junyu Ren , Philip S. Yu

We consider the problem of neural semantic parsing, which translates natural language questions into executable SQL queries. We introduce a new mechanism, execution guidance, to leverage the semantics of SQL. It detects and excludes faulty…

Computation and Language · Computer Science 2018-09-17 Chenglong Wang , Kedar Tatwawadi , Marc Brockschmidt , Po-Sen Huang , Yi Mao , Oleksandr Polozov , Rishabh Singh

A large number of web applications is based on a relational database together with a program, typically a script, that enables the user to interact with the database through embedded SQL queries and commands. In this paper, we introduce a…

Logic in Computer Science · Computer Science 2016-10-10 Shachar Itzhaky , Tomer Kotek , Noam Rinetzky , Mooly Sagiv , Orr Tamir , Helmut Veith , Florian Zuleger

Distributed data analytics platforms (i.e., Apache Spark, Hadoop) provide high-level APIs to programmatically write analytics tasks that are run distributedly in multiple computing nodes. The design of these frameworks was primarily…

Cryptography and Security · Computer Science 2023-12-05 Fahad Shaon , Sazzadur Rahaman , Murat Kantarcioglu

We present a generative model to map natural language questions into SQL queries. Existing neural network based approaches typically generate a SQL query word-by-word, however, a large portion of the generated results are incorrect or not…

Computation and Language · Computer Science 2018-04-24 Yibo Sun , Duyu Tang , Nan Duan , Jianshu Ji , Guihong Cao , Xiaocheng Feng , Bing Qin , Ting Liu , Ming Zhou

Security-Enhanced Linux (SELinux) is a Linux kernel module that allows for a role-based access control (RBAC) mechanism. It provides a fine-grained security framework enabling system administrators to define security policies at the system…

Cryptography and Security · Computer Science 2023-12-11 Divyam Pahuja , Alvin Tang , Klim Tsoutsman

SQL Injection (SQLi) continues to pose a significant threat to the security of web applications, enabling attackers to manipulate databases and access sensitive information without authorisation. Although advancements have been made in…

Cryptography and Security · Computer Science 2025-02-10 Naga Sai Dasari , Atta Badii , Armin Moin , Ahmed Ashlam

This paper presents an empirical investigation into the capabilities of Large Language Models (LLMs) to perform automated Attribute-based Access Control (ABAC) policy mining. While ABAC provides fine-grained, context-aware access…

Cryptography and Security · Computer Science 2025-11-25 More Aayush Babasaheb , Shamik Sural

The combination of the flexibility of RDF and the expressiveness of SPARQL provides a powerful mechanism to model, integrate and query data. However, these properties also mean that it is nontrivial to write performant SPARQL queries.…

Databases · Computer Science 2017-08-29 Antonis Loizou , Paul Groth

To safeguard sensitive user data, web developers typically rely on implicit access-control policies, which they implement using access checks and query filters. This ad hoc approach is error-prone as these scattered checks and filters are…

Software Engineering · Computer Science 2024-12-13 Wen Zhang , Dev Bali , Jamison Kerney , Aurojit Panda , Scott Shenker

Administrator-centered access control failures can cause data breaches, putting organizations at risk of financial loss and reputation damage. Existing graphical policy configuration tools and automated policy generation frameworks attempt…

Cryptography and Security · Computer Science 2023-10-06 Sakuna Harinda Jayasundara , Nalin Asanka Gamagedara Arachchilage , Giovanni Russello

We consider the problem of finding equivalent minimal-size reformulations of SQL queries in presence of embedded dependencies [1]. Our focus is on select-project-join (SPJ) queries with equality comparisons, also known as safe conjunctive…

Databases · Computer Science 2009-06-27 Rada Chirkova , Michael Genesereth

Relationship-based access control (ReBAC) is a flexible and expressive framework that allows policies to be expressed in terms of chains of relationship between entities as well as attributes of entities. ReBAC policy mining algorithms have…

Cryptography and Security · Computer Science 2019-08-12 Thang Bui , Scott D. Stoller , Hieu Le

Inference-time planning with large language models frequently breaks under partial observability: when task-critical preconditions are not specified at query time, models tend to hallucinate missing facts or produce plans that violate hard…

Artificial Intelligence · Computer Science 2026-01-29 Shuhui Qu