数据应用访问控制的一些参考资料
我们如果需要开发一个数据的自助服务应用访问控制是比较复杂的,包含了多重因素
- 来自集成系统的
- 来自自身系统业务模型的
以上因素会加剧数据应用访问控制的复杂性,所以了解一些业界实践还是比较有用的,以下是一些参考资料值得学习下
参考资料
https://blog.satoricyber.com/asking-the-right-question-rbac-vs-abac/
https://blog.satoricyber.com/the-redshift-tableau-satori-stack-for-datasecops-in-data-analytics/
https://medium.com/pinterest-engineering/setting-up-snowflake-secondary-roles-with-tableau-8efda19088b0
https://help.tableau.com/current/server/en-us/manage_server.htm
https://help.tableau.com/current/server/en-us/permissions.htm
https://tableauandbehold.com/2016/03/07/how-to-set-up-your-database-for-row-level-security-in-tableau/
https://help.tableau.com/v2021.4/server/en-us/rls_options_overview.htm
https://help.tableau.com/current/pro/desktop/en-us/publish_userfilters.htm
https://blog.open-metadata.org/building-access-control-for-openmetadata-5b842a2abd90
https://ranger.apache.org/
https://nvlpubs.nist.gov/nistpubs/specialpublications/NIST.sp.800-162.pdf