Database applications in enterprise information system for flexibility of security policy large require the Row Level Security mechanism. Large number of users and tables in database increases the process complexity of administration. In this paper, we propose automated design method of hierarchical access control in database to reduce the number of operations for user data spaces creation. An algorithm for automatic creation of SQL-queries in the Row Level Security, which is suitable for most databases using the Discretionary Access Control, is proposed. Method uses structural-post hierarchy users, database dictionary and templates of access control commands for different DBMS.

Problems in programming 2010; 2-3: 414-418

James Joshi, Walid G. Aref, Arif Ghafoor, Eugene H. Spafford: Security models for web-based applications // Communications of the ACM (CACM), 2001. – 44. – P. 38–44.

Ravi S. Sandhu, David F. Ferraiolo, D. Richard Kuhn: The NIST model for role-based access control: towards a unified standard. The Procs. of the fifth ACM workshop on Role-based access control, July 26–27, 2000. – Berlin, Germany. – Р. 47–63.

Arnon Rosenthal, William R. Herndon: Granularity of Data Protection for MLS Applications and DBMSs. The Procs. of the IFIP WG11.3 Working Conference on Database Security, Lake Guntersville, Alabama, USA, 12–15 September, 1993. – Р. 161–180.

Row-level Security in A. Relational Database Management System. Patent N 7,240,046 B2. 2007. United States Patent.

Steve Barker: Dynamic Meta-level Access Control in SQL. The Procs. of 22nd Annual IFIP WG11.3 // Working Conference on Data and

Applications Security, London, UK, July 13–16. – 2008. – Р. 1–16.

Shariq Rizvi, Alberto Mendelzon, S. Sudarshan, Prasan Roy: Extending query rewriting techniques for fine-grained access control. The Procs. of the 2004 ACM SIGMOD international conference on Management of data, June 13–18, 2004. – Paris, France. – Р. 551-562.

Qihua Wang, Ting Yu, Ninghui Li, Jorge Lobo, Elisa Bertino, Keith Irwin, Ji-Won Byun: On the correctness criteria of fine-grained access control in relational databases. Proceedings of the 33rd international conference on Very large data bases, September 23–28, 2007. – Vienna, Austria. – Р. 555–566.

Steven Dawson, Shelly Qian, Pierangela Samarati: Providing Security and Interoperation of Heterogeneous Systems. Distributed and Parallel Databases. – 2000. – 8, N 1, January. – Р. 119–145.

Torsten Priebe, Eduardo B. Fernández, Jens Ingo Mehlau, Günther Pernul: A Pattern System for Access Control. // In: Research Directions in Data and Applications Security XVIII, IFIP TC11/WG 11.3 Eighteenth Annual Conference on Data and Applications Security, July 25–28, 2004, Sitges, Catalonia, Spain. – Р. 235–249.

Jonathan D. Moffett, Emil Lupu: The Uses of Role Hierarchies in Access Control. In: Procs. of the Fourth ACM Workshop on Role-Based Access Control, October 28–29, 1999, Fairfax, VA, USA. – Р. 153–160.

Sejong Oh, Ravi S. Sandhu, Xinwen Zhang. An effective role administration model using organization structure. ACM Transactions on Information and System Security (TISSEC). – 2006. – 9. – 2006. – Р. 113–137.