Discretionary Access Control in a Database

The typical method of enforcing discretionary access control in a database system is based on the Granting and Revoking of Privileges.

Types of Discretionary Privileges:
There are two levels for assigning privileges to use the database system:

  1. The Account Level.
  2. At this level, the DBA specifies the particular privileges that each account holds independently of the relations in the database.

  3. The Relation (or Table) Level.
  4. At this level, the DBA can control the privilege to access each individual relation or view in the database.