Skip to main content
SpringerLink
Log in

An Intermediate Representation for Rewriting Cypher Queries

  • Conference paper
  • First Online:
Database and Expert Systems Applications - DEXA 2023 Workshops (DEXA 2023)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 1872))

Included in the following conference series:

Abstract

Some of the current graph database systems provide built-in authorization and access control features. However, many authorization requirements demand for more sophisticated access control such as fine-grained, attribute-based access control (ABAC). Therefore, we decided for a query rewriting approach to enforce these authorizations. We propose an intermediate representation for the semantics of the query. Based on the Cypher grammar, we build an abstract syntax tree (AST) of the query to be extended (i.e., rewritten). We consider a universal class hierarchy for our AST nodes based on the composite pattern, while the semantics of the nodes is introduced via data components. This provides flexibility with respect to the supported kinds of permissions and complexity of the Cypher queries. Our concept and prototypical implementation rely on ANTLR (ANother Tool for Language Recognition), which generates a parser based on the Cypher grammar to create and traverse concrete syntax trees.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 49.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 64.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    https://github.com/jku-lit-scsl/CypherRewritingCore.

  2. 2.

    https://research.daho.at/papers/ast_for_cypher_queries.

References

  1. Arusoaie, A., Vicol, D.I.: Automating abstract syntax tree construction for context free grammars. In: 2012 14th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing, pp. 152–159 (2012). https://doi.org/10.1109/SYNASC.2012.8

  2. Van den Brand, M., Moreau, P.E., Vinju, J.: Generator of efficient strongly typed abstract syntax trees in java. IEE Proc.-Softw. 152(2), 70–78 (2005)

    Article  Google Scholar 

  3. Clark, C.: Uniform abstract syntax trees. ACM SIGPLAN Notices 35(2), 11–16 (2000)

    Article  Google Scholar 

  4. Hofer, D., Nadschläger, S., Mohamed, A., Küng, J.: Extending authorization capabilities of object relational/graph mappers by request manipulation. In: Strauss, C., Cuzzocrea, A., Kotsis, G., Tjoa, A.M., Khalil, I. (eds.) Database and Expert Systems Applications, pp. 71–83. Springer International Publishing, Cham (2022). https://doi.org/10.1007/978-3-031-12426-6_6

    Chapter  Google Scholar 

  5. Mohamed, A., Auer, D., Hofer, D., Küng, J.: Authorization and access control for different database models: Requirements and current state of the art. In: Dang, T.K., Küng, J., Chung, T.M. (eds.) Future Data and Security Engineering. Big Data, Security and Privacy, Smart City and Industry 4.0 Applications, pp. 225–239. Springer Nature Singapore, Singapore (2022). https://doi.org/10.1007/978-981-19-8069-5_15

  6. Neo4j Inc: openCypher. https://opencypher.org/. Accessed 13 Feb 2023

  7. Riehle, D.: Composite design patterns. In: Proceedings of the 12th ACM SIGPLAN Conference on Object-oriented Programming, Systems, Languages, and Applications, pp. 218–228 (1997)

    Google Scholar 

  8. Sicari, S., Rizzardi, A., Coen-Porisini, A.: Security &privacy issues and challenges in NOSQL databases. Comput. Netw. 206, 108828 (2022). https://doi.org/10.1016/j.comnet.2022.108828, https://www.sciencedirect.com/science/article/pii/S1389128622000470

  9. Wadler, P., et al.: The expression problem. Posted on the Java Genericity mailing list (1998). https://homepages.inf.ed.ac.uk/wadler/papers/expression/expression.txt

Download references

Acknowledgements

This research has been partly supported by the LIT Secure and Correct Systems Lab funded by the State of Upper Austria and by the COMET-K2 Center of the Linz Center of Mechatronics (LCM) funded by the Austrian federal government and the federal state of Upper Austria.

Author information

Authors and Affiliations

  1. Institute for Application-oriented Knowledge Processing (FAW), Johannes Kepler University (JKU) Linz, Linz, Austria

    Daniel Hofer, Aya Mohamed, Stefan Nadschläger & Dagmar Auer

  2. LIT Secure and Correct Systems Lab, Linz Institute of Technology (LIT), Johannes Kepler University (JKU) Linz, Linz, Austria

    Daniel Hofer, Aya Mohamed & Dagmar Auer

Authors
  1. Daniel Hofer
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Aya Mohamed
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Stefan Nadschläger
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Dagmar Auer
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Daniel Hofer .

Editor information

Editors and Affiliations

  1. Johannes Kepler University Linz, Linz, Austria

    Gabriele Kotsis

  2. Vienna University of Technology, Vienna, Austria

    A Min Tjoa

  3. Johannes Kepler University Linz, Linz, Austria

    Ismail Khalil

  4. Software Competence Center Hagenberg GmbH, Hagenberg, Austria

    Bernhard Moser

  5. Johannes Kepler University Linz, Linz, Austria

    Atif Mashkoor

  6. Johannes Kepler University Linz, Linz, Austria

    Johannes Sametinger

  7. Pak-Austria Fachhochschule - Institute of Applied Sciences and Technology (PAF-IAST), Haripur, Pakistan

    Maqbool Khan

Rights and permissions

Reprints and permissions

Copyright information

© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Hofer, D., Mohamed, A., Nadschläger, S., Auer, D. (2023). An Intermediate Representation for Rewriting Cypher Queries. In: Kotsis, G., et al. Database and Expert Systems Applications - DEXA 2023 Workshops. DEXA 2023. Communications in Computer and Information Science, vol 1872. Springer, Cham. https://doi.org/10.1007/978-3-031-39689-2_9

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-39689-2_9

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-39688-5

  • Online ISBN: 978-3-031-39689-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation