row level security
play

Row Level Security Stephen Frost - PowerPoint PPT Presentation

Aug 03, 2023 •329 likes •646 views

Introduction Policies Examples Performance Row Level Security Stephen Frost stephen.frost@crunchydatasolutions.com Crunchy Data Solutions, Inc. September 19, 2014 Stephen Frost Postgres Open 2014 Introduction Concept Policies View

  1. Introduction Policies Examples Performance Row Level Security Stephen Frost stephen.frost@crunchydatasolutions.com Crunchy Data Solutions, Inc. September 19, 2014 Stephen Frost Postgres Open 2014

  2. Introduction Concept Policies View Based Approach Examples Multi-schema Approach Performance Stephen Frost Chief Technology Officer @ Crunchy Committer Major Contributor Implemented the roles system in 8.3 Column-level privileges in 8.4 Contributions to PL/pgSQL, PostGIS Stephen Frost Postgres Open 2014

  3. Introduction Concept Policies View Based Approach Examples Multi-schema Approach Performance What is RLS? Provide an individual view of the data in the system for each user of the system, while maintaining relational consistency and normalization with a single set of tables. Filtering records returned from all queries Limit records allowed to be added to a table Support filtering and limiting based on user Require policies to always be applied Default Deny approach Stephen Frost Postgres Open 2014

  4. Introduction Concept Policies View Based Approach Examples Multi-schema Approach Performance Security Barrier Views Build a view over tables to filter records Must use security barrier option Permissions on view independent of table Access to tables through view uses permisisions of view owner CREATE TABLE mytable ( mydata text, myuser name ); CREATE VIEW myview WITH (security_barrier) AS SELECT * FROM mytable WHERE myuser = current_user(); Stephen Frost Postgres Open 2014

  5. Introduction Concept Policies View Based Approach Examples Multi-schema Approach Performance WITH CHECK Option ”Simple” views are automatically updatable View could be used to add records not visible to user WITH CHECK prevents adding records which can’t be seen CASCADED vs LOCAL CREATE VIEW myview WITH (security_barrier, check_option) AS SELECT * FROM mytable WHERE myuser = current_user(); Or CREATE VIEW myview WITH (security_barrier) AS SELECT * FROM mytable WHERE myuser = current_user WITH CHECK OPTION; Stephen Frost Postgres Open 2014

  6. Introduction Concept Policies View Based Approach Examples Multi-schema Approach Performance Multi-schema Approach Create a schema and set of tables for each user, use GRANT system for managing access control. Difficult to maintain consistency Maintenance nightmare for updating table definitions Dynamic SQL may be required Views or inheiritance for bulk operations Partitioning must match authorization requirement Stephen Frost Postgres Open 2014

  7. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT ALTER TABLE ... (ENABLE/DISABLE) ROW LEVEL SECURITY ENABLE: Enables RLS for the table Requires all access to be through a policy Default-Deny policy Excludes superuser and table owner by default DISABLE: Disables RLS for the table Policies are no longer used at all Does not remove policies on the table Stephen Frost Postgres Open 2014

  8. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT SET ROW SECURITY ... = (ON/OFF/FORCE) ON - Normal mode, policies applied as appropriate OFF - Never applies RLS, will throw an ERROR if necessary FORCE - RLS applied even for superusers and table owners Stephen Frost Postgres Open 2014

  9. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY Policies are table-specific Applied for specific commands, or all commands Can be for specific roles or all roles ”default-deny” policy USING and WITH CHECK clauses WITH CHECK defaults to USING if not specified Command: CREATE POLICY Description: define a new row-security policy for a table Syntax: CREATE POLICY name ON table_name [ FOR { ALL | SELECT | INSERT | UPDATE | DELETE } ] [ TO { role_name | PUBLIC } [, ...] ] [ USING ( expression ) ] [ WITH CHECK ( check_expression ) ] Stephen Frost Postgres Open 2014

  10. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY Example policy creation: CREATE POLICY p1 ON mytable USING (myuser = current_user); Stephen Frost Postgres Open 2014

  11. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY Example policy creation: CREATE POLICY p1 ON mytable USING (myuser = current_user); Same: CREATE POLICY p1 ON mytable USING (myuser = current_user) WITH CHECK (myuser = current_user); Stephen Frost Postgres Open 2014

  12. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY Example policy creation: CREATE POLICY p1 ON mytable USING (myuser = current_user); Same: CREATE POLICY p1 ON mytable FOR ALL USING (myuser = current_user) WITH CHECK (myuser = current_user); Stephen Frost Postgres Open 2014

  13. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY Example policy creation: CREATE POLICY p1 ON mytable USING (myuser = current_user); Same: CREATE POLICY p1 ON mytable FOR ALL TO PUBLIC USING (myuser = current_user) WITH CHECK (myuser = current_user); Stephen Frost Postgres Open 2014

  14. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY FOR SELECT Applies only to SELECT queries Only allows USING clause CREATE POLICY p1 ON mytable FOR SELECT USING (myuser = current_user); Stephen Frost Postgres Open 2014

  15. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY FOR INSERT Applies only to INSERT queries Only allows WITH CHECK clause CREATE POLICY p1 ON mytable FOR INSERT WITH CHECK (myuser = current_user); Stephen Frost Postgres Open 2014

  16. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY FOR UPDATE Applies only to UPDATE queries Alllows both USING and WITH CHECK clauses If WITH CHECK is omitted, USING clause will be used Allows updating records to be hidden from current user: CREATE POLICY p1 ON mytable FOR UPDATE USING (myuser = current_user) WITH CHECK (true); Stephen Frost Postgres Open 2014

  17. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT CREATE POLICY FOR DELETE Applies only to DELETE queries Alllows only USING clause CREATE POLICY p1 ON mytable FOR SELECT USING (myuser = current_user); Stephen Frost Postgres Open 2014

  18. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT ALTER POLICY Allows changing policy definitions Set of roles the policies applies to can also be changed COMMAND for policy is not able to be changed- drop and recreate instead Policies can also be renamed Command: ALTER POLICY Description: change the definition of a row-security policy Syntax: ALTER POLICY name ON table_name [ RENAME TO new_name ] [ TO { role_name | PUBLIC } [, ...] ] [ USING ( expression ) ] [ WITH CHECK ( check_expression ) ] Stephen Frost Postgres Open 2014

  19. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT ALTER POLICY ALTER POLICY p1 ON mytable USING (myuser = ’r1’); ALTER POLICY p1 ON mytable WITH CHECK (myuser = ’r1’); ALTER POLICY p1 ON mytable TO r1, r2; ALTER POLICY p1 ON mytable TO r1, r2 USING (myuser = current_user) WITH CHECK (myuser = current_user); Stephen Frost Postgres Open 2014

  20. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT DROP POLICY Policies can be dropped Remember- default deny policy if no policies found Command: DROP POLICY Description: remove a row-security policy from a table Syntax: DROP POLICY [ IF EXISTS ] name ON table_name DROP POLICY p1 ON mytable; Stephen Frost Postgres Open 2014

  21. Enabling Introduction Create Policies Alter Examples Drop Performance vs. GRANT POLICY vs. GRANT GRANT system Table-level SELECT, INSERT, UPDATE, DELETE Column-level SELECT, INSERT, UPDATE All-or-Nothing for rows Views traditionally used to limit data Everything-or-Error POLICY system Table-level row selection Conditional added to queries ERROR for rows added which violate POLICY Stephen Frost Postgres Open 2014

  22. Introduction SELECT Filtering Policies Data Modifcation Policies Examples External Policy Systems Performance Simple USING Policy postgres=# \d t1 Table "public.t1" Column | Type | Modifiers --------+------+----------- myuser | name | mydata | text | Policies: POLICY "p1" EXPRESSION (myuser = "current_user"()) postgres=# table t1; myuser | mydata --------+--------- r1 | r1 data r2 | r2 data r3 | r3 data (3 rows) Stephen Frost Postgres Open 2014

  23. Introduction SELECT Filtering Policies Data Modifcation Policies Examples External Policy Systems Performance Simple USING Policy Results filtered based on user postgres=# set role r1; SET postgres=> table t1; myuser | mydata --------+--------- r1 | r1 data (1 row) If no WITH CHECK clause specified, USING clause is used postgres=> insert into t1 values (’r2’,’my data’); ERROR: new row violates WITH CHECK OPTION for "t1" DETAIL: Failing row contains (r2, my data). Stephen Frost Postgres Open 2014

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Transport Level Security HTTPS SSH CSS322: Security and Cryptography Sirindhorn International

Transport Level Security HTTPS SSH CSS322: Security and Cryptography Sirindhorn International

CSS322 Transport Security Web Security TLS/SSL Transport Level Security HTTPS SSH CSS322: Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 28 October 2013

687 views • 32 slides
Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your

Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your

Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your mentality Wake up to reality From the song, "I've Got You under My Skin Fifth Edition by Cole Porter by William Stallings Lecture slides by

300 views • 5 slides
Binary-Level Software Security Gang Tan Department of CSE, Lehigh University For Joint Summer

Binary-Level Software Security Gang Tan Department of CSE, Lehigh University For Joint Summer

Binary-Level Software Security Gang Tan Department of CSE, Lehigh University For Joint Summer Schools on Cryptography and Principles of Software Security @ Penn State; Jun 1st, 2012 High-Level Languages for Safety/Security 2 Java, C#,

1.54k views • 98 slides
YOUR SPEAKER 2016 CHIEF SECURITY OFFICER PRAETORIAN CONSULTING INTERNATIONAL (CYBER

YOUR SPEAKER 2016 CHIEF SECURITY OFFICER PRAETORIAN CONSULTING INTERNATIONAL (CYBER

YOUR SPEAKER 2016 CHIEF SECURITY OFFICER PRAETORIAN CONSULTING INTERNATIONAL (CYBER SECURITY AUTOMATION) 2014 HEAD OF INFORMATION SECURITY WORLDLINE (ATOS GROUP) (LEVEL ONE SERVICE PROVIDER) 2014 CISO LEVEL SECURITY, RISK

266 views • 24 slides
Make the difference and get the highest level of security at the right cost. Integration

Make the difference and get the highest level of security at the right cost. Integration

Make the difference and get the highest level of security at the right cost. Integration Security Power up Merchandising Standalone solution No tools Flexibility Any kind of product Compatible with all existing sensors and remote s

317 views • 9 slides
OsmocomBB A tool for GSM protocol level security Harald Welte gnumonks.org gpl-violations.org

OsmocomBB A tool for GSM protocol level security Harald Welte gnumonks.org gpl-violations.org

GSM/3G Network Security Introduction Security Problems and the Baseband OsmocomBB Project Summary OsmocomBB A tool for GSM protocol level security Harald Welte gnumonks.org gpl-violations.org OpenBSC airprobe.org hmw-consulting.de SSTIC

629 views • 35 slides
Com puter Security Part One Security as a subject Security is an old problem in the

Com puter Security Part One Security as a subject Security is an old problem in the

Com puter Security Part One Security as a subject Security is an old problem in the computing world, and are parallel to even older problems outside computing Required level of security is always related to what you protect

237 views • 23 slides
Cyber Security WCA - 2019 1 BILLION users Lets level set with some Defjnitions and

Cyber Security WCA - 2019 1 BILLION users Lets level set with some Defjnitions and

App Engine A Practical Approach To Cyber Security WCA - 2019 1 BILLION users Lets level set with some Defjnitions and Examples Protecting digital data and assets (a subset of information security) Confidentiality 1 Integrity 2

421 views • 21 slides
Non-IGMP-specific security or Why not to do security at the IGMP level Dave Thaler

Non-IGMP-specific security or Why not to do security at the IGMP level Dave Thaler

Non-IGMP-specific security or Why not to do security at the IGMP level Dave Thaler dthaler@microsoft.com General Internet Case Group Receiver Group key Content Group Group Key acquisition Node Provider Key Key Server Server

613 views • 10 slides
User Input Attacks CPSC 328 Spring 2009 Review Abstract lower level security Provide

User Input Attacks CPSC 328 Spring 2009 Review Abstract lower level security Provide

User Input Attacks CPSC 328 Spring 2009 Review Abstract lower level security Provide end-to-end security User security info to server WS Security XML Encryption XML Signature Tokens

221 views • 6 slides
OpenBSC network-side GSM stack A tool for GSM protocol level security analysis Harald Welte

OpenBSC network-side GSM stack A tool for GSM protocol level security analysis Harald Welte

GSM/3G security Implementing GSM protocols Security analysis Summary OpenBSC network-side GSM stack A tool for GSM protocol level security analysis Harald Welte gnumonks.org gpl-violations.org OpenBSC airprobe.org hmw-consulting.de SSTIC

1.16k views • 34 slides
HOMELAND SECURITY: CYBER-SECURITY AT THE LOCAL LEVEL Kirk Bailey, CISSP, CISM CISO, UW Ernie

HOMELAND SECURITY: CYBER-SECURITY AT THE LOCAL LEVEL Kirk Bailey, CISSP, CISM CISO, UW Ernie

HOMELAND SECURITY: CYBER-SECURITY AT THE LOCAL LEVEL Kirk Bailey, CISSP, CISM CISO, UW Ernie Hayden, CISSP CISO, Port of Seattle HOW BIG IS THE JOB? WHAT IS INVOLVED (THE SCOPE OF IT)? WHAT ARE THE TOUGH CHALLENGES? WHAT DOES THE FUTURE

377 views • 36 slides
Security Policies CS461/ECE422 Computer Security I Fall 2009 -1 Overview Natural language

Security Policies CS461/ECE422 Computer Security I Fall 2009 -1 Overview Natural language

Security Policies CS461/ECE422 Computer Security I Fall 2009 -1 Overview Natural language policies Example policies Implementation policies High level Low level -2 Reading Material Computer Security,

764 views • 40 slides
Including Security Monitoring in Cloud Service Level Agreement (SLA) Amir Teshome Supervisors

Including Security Monitoring in Cloud Service Level Agreement (SLA) Amir Teshome Supervisors

Including Security Monitoring in Cloud Service Level Agreement (SLA) Amir Teshome Supervisors Louis Rilling Christine Morin July 5, 2016 Amir Teshome Including Security Monitoring in Cloud SLA 1 / 11 Introduction SLAs & Security

1.26k views • 57 slides
Security infrastructure, certificates and responsibilities Anand Padmanabhan for the OSG

Security infrastructure, certificates and responsibilities Anand Padmanabhan for the OSG

OSG Summer Workshop Lubbock, 2011 Security infrastructure, certificates and responsibilities Anand Padmanabhan for the OSG Security team Aug 10th, 2011 OSG Security 1 OSG Security OSG Security model A high level overview Aug 10th, 2011

714 views • 37 slides
Level Up Quality, Security, & Safety Todd L. Montgomery @toddlmontgomery 1986

Level Up Quality, Security, & Safety Todd L. Montgomery @toddlmontgomery 1986

StoneTor Level Up Quality, Security, & Safety Todd L. Montgomery @toddlmontgomery 1986 https://www.nap.edu/catalog/10616/post-challenger-evaluation-of-space-shuttle-risk-assessment-and-management IV&V Independent Verification

1.44k views • 105 slides
Data-Parallel Computing Meets STRIPS Erez Karpas Tomer Sagi Carmel Domshlak Avigdor Gal Avi

Data-Parallel Computing Meets STRIPS Erez Karpas Tomer Sagi Carmel Domshlak Avigdor Gal Avi

Motivation DPPS DPPS as Planning Data-Parallel Computing Meets STRIPS Erez Karpas Tomer Sagi Carmel Domshlak Avigdor Gal Avi Mendelson Moshe Tennenholtz Technion-Microsoft Electronic-Commerce Research Center Motivation DPPS DPPS as

915 views • 42 slides
Robust Convex Approximation Methods for TDOA-Based Localization under NLOS Conditions Anthony

Robust Convex Approximation Methods for TDOA-Based Localization under NLOS Conditions Anthony

Robust Convex Approximation Methods for TDOA-Based Localization under NLOS Conditions Anthony Man-Cho So Department of Systems Engineering & Engineering Management The Chinese University of Hong Kong (CUHK) (Joint Work with Gang Wang)

289 views • 24 slides
Responsibility and Resource Sharing Ken Long Mark Palmer May 8, 2013 MIPO Draft: 02/2013

Responsibility and Resource Sharing Ken Long Mark Palmer May 8, 2013 MIPO Draft: 02/2013

MICE Construction: Responsibility and Resource Sharing Ken Long Mark Palmer May 8, 2013 MIPO Draft: 02/2013 Rev. E MICE International Project Team RAL PPD Director MICE Collaboration D. Wark A. Blondel (Spokesperson) MICE International

101 views • 6 slides
Indiana DOTs Public lic Transportation Agency Safety Pla lan Presented by Brittany White,

Indiana DOTs Public lic Transportation Agency Safety Pla lan Presented by Brittany White,

Indiana DOTs Public lic Transportation Agency Safety Pla lan Presented by Brittany White, Intercity Program Manager Indiana DOT Office of Transit BrWhite@indot.IN.gov Indiana PTASP Overview Indiana has 18 transit systems subject to

224 views • 5 slides
SIP Event Throttles draft-niemi-sipping-event-throttle-03 Aki Niemi aki.niemi@nokia.com IETF-63

SIP Event Throttles draft-niemi-sipping-event-throttle-03 Aki Niemi aki.niemi@nokia.com IETF-63

SIP Event Throttles draft-niemi-sipping-event-throttle-03 Aki Niemi aki.niemi@nokia.com IETF-63 Summary of Changes Explicitly uses RLS to aggregate a set of subscriptions Fairly major change in scope RLS now does throttling

274 views • 4 slides
EGI-InSPIRE Globus Toolkit Staged Rollout Ilya Saverchenko, Matteo Lanati Leibniz Supercomputing

EGI-InSPIRE Globus Toolkit Staged Rollout Ilya Saverchenko, Matteo Lanati Leibniz Supercomputing

EGI-InSPIRE Globus Toolkit Staged Rollout Ilya Saverchenko, Matteo Lanati Leibniz Supercomputing Centre EGI Technical Forum - Lyon - September 20th 2011 Tuesday, September 20, 2011 Summary Introduction Components overview

569 views • 14 slides
Black Box Search By Unbiased Variation Per Kristian Lehre and Carsten Witt CERCIA, University of

Black Box Search By Unbiased Variation Per Kristian Lehre and Carsten Witt CERCIA, University of

Black Box Search By Unbiased Variation Per Kristian Lehre and Carsten Witt CERCIA, University of Birmingham, UK DTU Informatics, Copenhagen, Denmark ThRaSH - March 24th 2010 State of the Art in Runtime Analysis of RSHs OneMax (1+1) EA O ( n

789 views • 36 slides
Considering Rust February 2020 Jon Gjengset Graduate student at MITs Parallel and Distributed

Considering Rust February 2020 Jon Gjengset Graduate student at MITs Parallel and Distributed

Considering Rust February 2020 Jon Gjengset Graduate student at MITs Parallel and Distributed Getting in touch: Operating Systems group. - jon@tsp.io Why me? - https://tsp.io - https://twitter.com/jonhoo - Noria: 70k LOC Rust

805 views • 66 slides

More recommend