Abstract
Traditionally data warehouses were queried by high level users (executive management, business analysts) only. As the range of potential users with data warehouse access is steadily growing, this assumption is no longer appropriate and the necessity of proper access control mechanisms arises. The security capabilities of available commercial OLAP systems are highly proprietary and the syntax of their security constraints is not suitable for design and documentation purposes. Also, approaches trying to derive the access control policies from the operational data sources have not been very successful, as the relational model is predominate in operational systems while OLAP systems make use of the non-traditional multidimensional model. Access control schemes do not map easily. We approach the issue from the application side by introducing a methodology and a language for conceptual OLAP security design.
This work is supported in part by the European Union through INCO COPERNICUS grant no. 977091 (project GOAL . Geographic Information Online Analysis).
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Bulos, D.: A New Dimension. In Database Programming & Design; 6/1996; reprinted in Chamoni, P, Gluchowski, P. (Eds.): Analytische Informationssysteme. Springer; Berlin et al., 1998.
Bulos, D., Forsman, S.: Getting Started with ADAPT. Whitepaper, Symmetry Corp.; San Rafael, 1998.
Cabibbo, L., Torlone, R.: Querying Multidimensional Databases. Proc. 6th International Workshop on Database Programming Languages (DBPL), Estes Park, CO, USA, August 18–20, 1997.
Castano, S., Fugini, M., Martella, G., Samarati P.: Database Security. ACM Press; 1994.
Elmasri, R.; Navathe, S.B.: Fundamentals of Database Systems; Addison-Wesley Longman, Inc.; 3rd edition; 2000.
Hahn, K., Sapia, C., Blaschka, M.: Automatically Generating OLAP Schemata from Conceptual Graphical Models. Proc. Third ACM International Workshop on Data Warehousing and OLAP (DOLAP 2000), McLean, VA, USA, November 2000.
Kimball, R.: Hackers, Crackers, and Spooks; Ensuring that your data warehouse is secure. In DBMS Magazine; April 1997.
Mikšovský, P., Matoušek, K., Zach, P.: Application A1 Specification. GOAL Technical Report TR8, INCO-Copernicus project no. 977091, March 1999.
Microsoft Corp.: Microsoft SQL Server 2000, Building Applications. Product documentation; Microsoft Corp., 1999.
Object Management Group: OMG Unified Modeling Language Specification. Version 1.3; March 2000.
Pernul, G., Winiwarter, W., Tjoa A M.: The Entity-Relationship Model for Multilevel Security. In Proc. 12th International Conference on the Entity-Relationship Approach (ER’93); Arlington, Texas, USA, December 15–17, 1993.
Priebe, T., Pernul, G.: Towards OLAP Security Design. Survey and Research Issues. Proc. Third ACM International Workshop on Data Warehousing and OLAP (DOLAP 2000), McLean, VA, USA, November 2000.
Priebe, T., Pernul, G.: Metadaten-gestützer Data-Warehouse-Entwurf mit ADAPTed UML. To appear in Proc. 5. Internationale Tagung Wirtschaftsinformatik (WI 2001); Augsburg, Germany, September 2001.
Rosenthal, A., Sciore, E.: View Security as the Basis for Data Warehouse Security. Proc. of the International Workshop on Design and Management of Data Warehouses (DMDW 2000); Stockholm, Sweden, June 5–6, 2000.
Sapia, C., Blaschka, M., Höfling, G., Dinter, B.: Extending the E/R Model for the Multidimensional Paradigm. In Kambayashi, Y. et. al. (Eds.), Advances in Database Technologies; LNCS Vol. 1552; Springer, 1999.
Sandhu, R.S., Coyne, E. J., Feinstein, H.L., Youman, C.E.: Role-Based Access Control Models. IEEE Computer, Vol. 29, Number 2; February 1996.
Steger, J., Günzel, H.: Identifying Security Holes in OLAP Applications. Proc. Fourteenth Annual IFIP WG 11.3 Working Conference on Database Security; Schoorl (near Amsterdam), The Netherlands, August 21–23, 2000.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Priebe, T., Pernul, G. (2001). A Pragmatic Approach to Conceptual Modeling of OLAP Security. In: S.Kunii, H., Jajodia, S., Sølvberg, A. (eds) Conceptual Modeling — ER 2001. ER 2001. Lecture Notes in Computer Science, vol 2224. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45581-7_24
Download citation
DOI: https://doi.org/10.1007/3-540-45581-7_24
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-42866-4
Online ISBN: 978-3-540-45581-3
eBook Packages: Springer Book Archive