SciELO - Scientific Electronic Library Online

vol.11 número4Implementación en VHDL de Procesador de Promediación Adaptado a Cambios Estadísticos en Clutter WeibullInspección de propiedades para apoyar la comprensibilidad en el modelado de procesos de negocio con IDEF0: un estudio de caso índice de autoresíndice de assuntospesquisa de artigos
Home Pagelista alfabética de periódicos  

Serviços Personalizados



  • Não possue artigos citadosCitado por SciELO

Links relacionados

  • Não possue artigos similaresSimilares em SciELO


Revista Cubana de Ciencias Informáticas

versão On-line ISSN 2227-1899


CLAVADETSCHER, Charles. Multi Dimensional Access Control In PostgreSQL. Rev cuba cienc informat [online]. 2017, vol.11, n.4, pp. 12-22. ISSN 2227-1899.

A database contains the information required to support all the business processes of a company, independently of its personnel structure. Therefore you will have, e.g. sales catalogues, product descriptions, accounting information, lists of employees, etc. Obviously not all employees are supposed to have access to all data, thus posing the question on how to manage their access to them in a secure way. This selection process is called authorization and is available in all database systems. In PostgreSQL, access control is organized around roles. The classic authorization system is vertical. This means that it allows to choose which tables or columns thereof are accessible to a user. Since version 9.5, PostgreSQL introduced the possibility of a horizontal access control. This type of access (row level security) allows to choose based on a configurable set of crieteria which rows are visible, and therefore modifiable, by a user. The combination of vertical and horizontal access control techniques enables a granularity in the configuration that, in the past, could only be achieved through workarounds difficult to maintain and, therefore, insecure.

Palavras-chave : PostgreSQL; databases; security; authorization; access control; row level security.

        · resumo em Espanhol     · texto em Espanhol     · Espanhol ( pdf )


Creative Commons License All the contents of this journal, except where otherwise noted, is licensed under a Creative Commons Attribution License