ACCOn: checking consistency of XML write-access control policies

Authors:
Loreto Bravo;James Cheney;Irini Fundulaki
Affiliations:
University of Edinburgh, UK;University of Edinburgh, UK;University of Edinburgh, UK and ICS-FORTH, Greece
Venue:
EDBT '08 Proceedings of the 11th international conference on Extending database technology: Advances in database technology
Year:
2008

Citing 11
Cited 5

Consistent query answers in inconsistent databases

PODS '99 Proceedings of the eighteenth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
Updating XML

SIGMOD '01 Proceedings of the 2001 ACM SIGMOD international conference on Management of data
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
On verifying consistency of XML specifications

Proceedings of the twenty-first ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
Secure and selective dissemination of XML documents

ACM Transactions on Information and System Security (TISSEC)
Specifying access control policies for XML documents with XPath

Proceedings of the ninth ACM symposium on Access control models and technologies
Secure XML querying with security views

SIGMOD '04 Proceedings of the 2004 ACM SIGMOD international conference on Management of data
Generalized XML security views

Proceedings of the tenth ACM symposium on Access control models and technologies
XML access control using static analysis

ACM Transactions on Information and System Security (TISSEC)
Formalizing XML access control for update operations

Proceedings of the 12th ACM symposium on Access control models and technologies
Repairing inconsistent XML write-access control policies

DBPL'07 Proceedings of the 11th international conference on Database programming languages

The Halting Problem and Undecidability of Document Generation under Access Control for Tree Updates

LATA '09 Proceedings of the 3rd International Conference on Language and Automata Theory and Applications
Rewrite-based verification of XML updates

Proceedings of the 12th international ACM SIGPLAN symposium on Principles and practice of declarative programming
Computational complexity of the problem of tree generation under fine-grained access control policies

Information and Computation
QFilter: rewriting insecure XML queries to secure ones using non-deterministic finite automata

The VLDB Journal — The International Journal on Very Large Data Bases
Consistency and repair for XML write-access control policies

The VLDB Journal — The International Journal on Very Large Data Bases

Quantified Score

Hi-index	0.00

Visualization

Abstract

XML access control policies involving updates may contain security flaws, here called inconsistencies, in which a forbidden operation may be simulated by performing a sequence of allowed operations. ACCOn implements i) consistency checking algorithms that examine whether a write-access control policy defined over a DTD is inconsistent and ii) repair algorithms that propose repairs to an inconsistent policy to obtain a consistent one.