Two phase filtering for XML access control

Authors:
Changwoo Byun;Seog Park
Affiliations:
Department of Computer Science, Sogang University, Seoul, South Korea;Department of Computer Science, Sogang University, Seoul, South Korea
Venue:
SDM'06 Proceedings of the Third VLDB international conference on Secure Data Management
Year:
2006

Citing 16
Cited 0

A model of authorization for next-generation database systems

ACM Transactions on Database Systems (TODS)
Design and implementation of an access control processor for XML documents

Proceedings of the 9th international World Wide Web conference on Computer networks : the international journal of computer and telecommunications netowrking
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
Secure and selective dissemination of XML documents

ACM Transactions on Information and System Security (TISSEC)
Accelerating XPath location steps

Proceedings of the 2002 ACM SIGMOD international conference on Management of data
Specifying and enforcing access control policies for XML document sources

World Wide Web
Securing XML Documents with Author-X

IEEE Internet Computing
Securing XML Documents

EDBT '00 Proceedings of the 7th International Conference on Extending Database Technology: Advances in Database Technology
XML Access Control Systems: A Component-Based Approach

Proceedings of the IFIP TC11/ WG11.3 Fourteenth Annual Working Conference on Database Security: Data and Application Security, Development and Directions
Author-X: A Java-Based System for XML Data Protection

Proceedings of the IFIP TC11/ WG11.3 Fourteenth Annual Working Conference on Database Security: Data and Application Security, Development and Directions
Regulating access to XML documents

Das'01 Proceedings of the fifteenth annual working conference on Database and application security
The XML benchmark project

The XML benchmark project
XML access control using static analysis

Proceedings of the 10th ACM conference on Computer and communications security
QFilter: fine-grained run-time XML access control via NFA-based query rewriting

Proceedings of the thirteenth ACM international conference on Information and knowledge management
An access control model for querying XML data

Proceedings of the 2005 workshop on Secure web services
Staircase join: teach a relational DBMS to watch its (axis) steps

VLDB '03 Proceedings of the 29th international conference on Very large data bases - Volume 29

Quantified Score

Hi-index	0.00

Visualization

Abstract

We propose two phase filtering scheme to develop an efficient mechanism for XML databases to control query-based access. An access control environment for XML documents and some techniques to deal with fine-grained authorization priorities and conflict resolution issues are proposed. Despite this, relatively little work has been done to enforce access controls particularly for XML databases in the case of query-based access. The basic idea utilized is that a user query interaction with only necessary access control rules is modified to an alternative form which is guaranteed to have no access violations using tree-awareness metadata of XML schemas and set operations supported by XPath 2.0. The scheme can be applied to any XML database management system and has several advantages such as small execution time overhead, fine-grained controls, and safe and correct query modification. The experimental results clearly demonstrate the efficiency of the approach.