{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2015:YV6SIDXM2YNPPCPJSG6T5CCGV7","short_pith_number":"pith:YV6SIDXM","canonical_record":{"source":{"id":"1512.01479","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-12-04T16:59:51Z","cross_cats_sorted":["cs.DB"],"title_canon_sha256":"e4b4de2b9615f71824cba4cc17024699241a3a95fc887c0369411a986c928a52","abstract_canon_sha256":"75b1996604c8e8f678196831b4a5af3f5aa109d715010e9838ee195d3201ba8d"},"schema_version":"1.0"},"canonical_sha256":"c57d240eecd61af789e991bd3e8846afe59cf5f58e4b1705ddf8492a094b2f93","source":{"kind":"arxiv","id":"1512.01479","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1512.01479","created_at":"2026-05-18T00:57:50Z"},{"alias_kind":"arxiv_version","alias_value":"1512.01479v2","created_at":"2026-05-18T00:57:50Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1512.01479","created_at":"2026-05-18T00:57:50Z"},{"alias_kind":"pith_short_12","alias_value":"YV6SIDXM2YNP","created_at":"2026-05-18T12:29:52Z"},{"alias_kind":"pith_short_16","alias_value":"YV6SIDXM2YNPPCPJ","created_at":"2026-05-18T12:29:52Z"},{"alias_kind":"pith_short_8","alias_value":"YV6SIDXM","created_at":"2026-05-18T12:29:52Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2015:YV6SIDXM2YNPPCPJSG6T5CCGV7","target":"record","payload":{"canonical_record":{"source":{"id":"1512.01479","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-12-04T16:59:51Z","cross_cats_sorted":["cs.DB"],"title_canon_sha256":"e4b4de2b9615f71824cba4cc17024699241a3a95fc887c0369411a986c928a52","abstract_canon_sha256":"75b1996604c8e8f678196831b4a5af3f5aa109d715010e9838ee195d3201ba8d"},"schema_version":"1.0"},"canonical_sha256":"c57d240eecd61af789e991bd3e8846afe59cf5f58e4b1705ddf8492a094b2f93","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:57:50.165193Z","signature_b64":"ge0Qo9KjvmwBffhmAFiLNK60ErG/R43a/cnjDLxblfvw+iJkf6Aix58JRltUI84PF71AlA/+07JC4eHhdkGaBQ==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"c57d240eecd61af789e991bd3e8846afe59cf5f58e4b1705ddf8492a094b2f93","last_reissued_at":"2026-05-18T00:57:50.164522Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:57:50.164522Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1512.01479","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:57:50Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"AMOKgiz7/INIFQzCbjivwll4UZ1ejjAYGS5bVyl2pRcNhoIVBp67Gg4DeQPz8114p226d/2zUnaURRl0XLQoCQ==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-22T23:35:49.436581Z"},"content_sha256":"f589b8e8f071778c3042b0282874b3b650211256a446b144aad0489553aed944","schema_version":"1.0","event_id":"sha256:f589b8e8f071778c3042b0282874b3b650211256a446b144aad0489553aed944"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2015:YV6SIDXM2YNPPCPJSG6T5CCGV7","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Strong and Provably Secure Database Access Control","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.DB"],"primary_cat":"cs.CR","authors_text":"David Basin, Marco Guarnieri, Srdjan Marinovic","submitted_at":"2015-12-04T16:59:51Z","abstract_excerpt":"Existing SQL access control mechanisms are extremely limited. Attackers can leak information and escalate their privileges using advanced database features such as views, triggers, and integrity constraints. This is not merely a problem of vendors lagging behind the state-of-the-art. The theoretical foundations for database security lack adequate security definitions and a realistic attacker model, both of which are needed to evaluate the security of modern databases. We address these issues and present a provably secure access control mechanism that prevents attacks that defeat popular SQL da"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1512.01479","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:57:50Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"okJxSApmv9AXfpyPsJJBuhklHaZKu0CoOuWNGmmlJhai5DQk0zAU2uIsPXEkjV/m6lP+s4zrOq08XER+Ez+vBA==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-22T23:35:49.436912Z"},"content_sha256":"a137da893efb763abe8cf0cdbed3ed027b92d59644ca730d8e11ce6e39788313","schema_version":"1.0","event_id":"sha256:a137da893efb763abe8cf0cdbed3ed027b92d59644ca730d8e11ce6e39788313"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7/bundle.json","state_url":"https://pith.science/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-22T23:35:49Z","links":{"resolver":"https://pith.science/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7","bundle":"https://pith.science/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7/bundle.json","state":"https://pith.science/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7/state.json","well_known_bundle":"https://pith.science/.well-known/pith/YV6SIDXM2YNPPCPJSG6T5CCGV7/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2015:YV6SIDXM2YNPPCPJSG6T5CCGV7","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"75b1996604c8e8f678196831b4a5af3f5aa109d715010e9838ee195d3201ba8d","cross_cats_sorted":["cs.DB"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-12-04T16:59:51Z","title_canon_sha256":"e4b4de2b9615f71824cba4cc17024699241a3a95fc887c0369411a986c928a52"},"schema_version":"1.0","source":{"id":"1512.01479","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1512.01479","created_at":"2026-05-18T00:57:50Z"},{"alias_kind":"arxiv_version","alias_value":"1512.01479v2","created_at":"2026-05-18T00:57:50Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1512.01479","created_at":"2026-05-18T00:57:50Z"},{"alias_kind":"pith_short_12","alias_value":"YV6SIDXM2YNP","created_at":"2026-05-18T12:29:52Z"},{"alias_kind":"pith_short_16","alias_value":"YV6SIDXM2YNPPCPJ","created_at":"2026-05-18T12:29:52Z"},{"alias_kind":"pith_short_8","alias_value":"YV6SIDXM","created_at":"2026-05-18T12:29:52Z"}],"graph_snapshots":[{"event_id":"sha256:a137da893efb763abe8cf0cdbed3ed027b92d59644ca730d8e11ce6e39788313","target":"graph","created_at":"2026-05-18T00:57:50Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Existing SQL access control mechanisms are extremely limited. Attackers can leak information and escalate their privileges using advanced database features such as views, triggers, and integrity constraints. This is not merely a problem of vendors lagging behind the state-of-the-art. The theoretical foundations for database security lack adequate security definitions and a realistic attacker model, both of which are needed to evaluate the security of modern databases. We address these issues and present a provably secure access control mechanism that prevents attacks that defeat popular SQL da","authors_text":"David Basin, Marco Guarnieri, Srdjan Marinovic","cross_cats":["cs.DB"],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-12-04T16:59:51Z","title":"Strong and Provably Secure Database Access Control"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1512.01479","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:f589b8e8f071778c3042b0282874b3b650211256a446b144aad0489553aed944","target":"record","created_at":"2026-05-18T00:57:50Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"75b1996604c8e8f678196831b4a5af3f5aa109d715010e9838ee195d3201ba8d","cross_cats_sorted":["cs.DB"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-12-04T16:59:51Z","title_canon_sha256":"e4b4de2b9615f71824cba4cc17024699241a3a95fc887c0369411a986c928a52"},"schema_version":"1.0","source":{"id":"1512.01479","kind":"arxiv","version":2}},"canonical_sha256":"c57d240eecd61af789e991bd3e8846afe59cf5f58e4b1705ddf8492a094b2f93","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"c57d240eecd61af789e991bd3e8846afe59cf5f58e4b1705ddf8492a094b2f93","first_computed_at":"2026-05-18T00:57:50.164522Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:57:50.164522Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"ge0Qo9KjvmwBffhmAFiLNK60ErG/R43a/cnjDLxblfvw+iJkf6Aix58JRltUI84PF71AlA/+07JC4eHhdkGaBQ==","signature_status":"signed_v1","signed_at":"2026-05-18T00:57:50.165193Z","signed_message":"canonical_sha256_bytes"},"source_id":"1512.01479","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:f589b8e8f071778c3042b0282874b3b650211256a446b144aad0489553aed944","sha256:a137da893efb763abe8cf0cdbed3ed027b92d59644ca730d8e11ce6e39788313"],"state_sha256":"2385da6f91fbc76527d541b0e43638a63a9e6cff93cd9666b286dd378a960e2f"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"rnG6chnjC6aSGnl9tWg3L4fAl8l/SXsVJsQxGwKqopUCbZm9GXWCM938aEKWuV7yU7FpYH+dGgar1KMk+Bt/BA==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-22T23:35:49.438713Z","bundle_sha256":"743be66ed8fc324ce248069bd50b1c24a5b6fc93954039cc7d455602a27b86d7"}}