Query translation for XPath-based security views

Authors:
Roel Vercammen;Jan Hidders;Jan Paredaens
Affiliations:
University of Antwerp, Belgium;University of Antwerp, Belgium;University of Antwerp, Belgium
Venue:
EDBT'06 Proceedings of the 2006 international conference on Current Trends in Database Technology
Year:
2006

Citing 8
Cited 2

Secure and selective dissemination of XML documents

ACM Transactions on Information and System Security (TISSEC)
Structural Properties of XPath Fragments

ICDT '03 Proceedings of the 9th International Conference on Database Theory
The complexity of XPath query evaluation

Proceedings of the twenty-second ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
XML access control using static analysis

Proceedings of the 10th ACM conference on Computer and communications security
Specifying access control policies for XML documents with XPath

Proceedings of the ninth ACM symposium on Access control models and technologies
Secure XML querying with security views

SIGMOD '04 Proceedings of the 2004 ACM SIGMOD international conference on Management of data
Generalized XML security views

Proceedings of the tenth ACM symposium on Access control models and technologies
XML subtree queries: specification and composition

DBPL'05 Proceedings of the 10th international conference on Database Programming Languages

XML Security Views Revisited

DBPL '09 Proceedings of the 12th International Symposium on Database Programming Languages
View update translation for XML

Proceedings of the 14th International Conference on Database Theory

Quantified Score

Hi-index	0.00

Visualization

Abstract

Since XML is used as a storage format in an increasing number of applications, security has become an important issue in XML databases. One aspect of security is restricting access to data by certain users. This can, for example, be achieved by means of access rules or XML security views, which define projections over XML documents. The usage of security views avoids information leakage that may occur when we use certain access rules. XML views can be implemented by materialized views, but materialization and maintenance of views may cause considerable overhead. Therefore, we study translations from queries on views to equivalent queries on the original XML documents, assuming both the security views and the queries are specified by XPath expressions. Especially, we investigate which XPath fragments are closed under the composition of a view and a query.