XML secure views using semantic access control

Authors:
Andrea Rota;Stuart Short;Mohammad Ashiqur Rahaman
Affiliations:
SAP AG, Corporate Research, Mougins, France;SAP AG, Corporate Research, Mougins, France;SAP AG, Corporate Research, Mougins, France
Venue:
Proceedings of the 2010 EDBT/ICDT Workshops
Year:
2010

Citing 11
Cited 0

XML document security based on provisional authorization

Proceedings of the 7th ACM conference on Computer and communications security
Fine grained access control for SOAP E-services

Proceedings of the 10th international conference on World Wide Web
Secure and selective dissemination of XML documents

ACM Transactions on Information and System Security (TISSEC)
Specifying and enforcing access control policies for XML document sources

World Wide Web
Author-X: A Java-Based System for XML Data Protection

Proceedings of the IFIP TC11/ WG11.3 Fourteenth Annual Working Conference on Database Security: Data and Application Security, Development and Directions
Concept-level access control for the Semantic Web

Proceedings of the 2003 ACM workshop on XML security
Ontology guided XML security engine

Journal of Intelligent Information Systems - Special issue: Database and applications security
Supporting Attribute-based Access Control with Ontologies

ARES '06 Proceedings of the First International Conference on Availability, Reliability and Security
Enforcing Privacy by Means of an Ontology Driven XACML Framework

IAS '07 Proceedings of the Third International Symposium on Information Assurance and Security
ROWLBAC: representing role based access control in OWL

Proceedings of the 13th ACM symposium on Access control models and technologies
Offline expansion of XACML policies based on p3p metadata

ICWE'05 Proceedings of the 5th international conference on Web Engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

The OASIS eXtensible Access Control Language (XACML) provides an interoperable tool for writing and enforcing access control policies based on attributes, i.e. characteristics of the entities that take part to the access, such as subjects or actions. Unfortunately, the attribute based approach starts to show its limits when entities exhibit complex relationships, such as semantic relations, which would be easily captured using ontologies instead of attributes. This paper integrates the XACML attribute model with an OWL ontology and describes a practical privacy filtering application able to filter out information from XML documents, according to a set of XACML semantic privacy policies.