NIST - National Institute of Standards and Technology
05/07/2024 | Press release | Distributed by Public on 05/08/2024 03:14
Access Control on NoSQL Databases
Published
May 7, 2024
Author(s)
Vincent C. Hu
Abstract
NoSQL database systems and data stores often outperform traditional RDBMS in various aspects, such as data analysis efficiency, system performance, ease of deployment, flexibility/scalability of data management, and users' availability. However, with an increasing number of people storing sensitive data in NoSQL databases, security issues have become critical concerns. NoSQL databases suffer from vulnerabilities, particularly due to the lack of effective support for data protection, including weak authorization mechanisms. As access control is a fundamental data protection requirement of any database management system DBMS, this document focuses on access control on NoSQL database systems.
Citation
NIST Interagency/Internal Report (NISTIR) -
NIST Pub Series
Pub Type
NIST Pubs
Download Paper
Keywords
access control, attribute-based access control, authorization, database systems, No-SQL, SQL.
Citation
Hu, V. (2024), Access Control on NoSQL Databases, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=957729 (Accessed May 8, 2024)