An authorization model for XML databases

Authors:
Alban Gabillon
Affiliations:
Université de Pau et des Pays de l'Adour, IUT de Mont de Marsan LIUPPA/CSySEC, France
Venue:
SWS '04 Proceedings of the 2004 workshop on Secure web service
Year:
2004

Citing 9
Cited 12

Logical foundations of multilevel databases

Data & Knowledge Engineering
XML document security based on provisional authorization

Proceedings of the 7th ACM conference on Computer and communications security
Updating XML

SIGMOD '01 Proceedings of the 2001 ACM SIGMOD international conference on Management of data
A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
Specifying and enforcing access control policies for XML document sources

World Wide Web
Polyinstantation for Cover Stories

ESORICS '92 Proceedings of the Second European Symposium on Research in Computer Security
An Access Control Model for Tree Data Structures

ISC '02 Proceedings of the 5th International Conference on Information Security
Extending xQuery with transformation operators

Proceedings of the 2003 ACM symposium on Document engineering
Access control of XML documents considering update operations

Proceedings of the 2003 ACM workshop on XML security

The case for access control on XML relationships

Proceedings of the 14th ACM international conference on Information and knowledge management
An access control model for querying XML data

Proceedings of the 2005 workshop on Secure web services
Formalizing XML access control for update operations

Proceedings of the 12th ACM symposium on Access control models and technologies
Dynamic access-control policies on XML encrypted data

ACM Transactions on Information and System Security (TISSEC)
An integrated access control for securely querying and updating XML data

ADC '08 Proceedings of the nineteenth conference on Australasian database - Volume 75
XML-BB: a model to handle relationships protection in XML documents

KES'07/WIRN'07 Proceedings of the 11th international conference, KES 2007 and XVII Italian workshop on neural networks conference on Knowledge-based intelligent information and engineering systems: Part III
Hecate, managing authorization with RESTful XML

Proceedings of the Second International Workshop on RESTful Design
QFilter: rewriting insecure XML queries to secure ones using non-deterministic finite automata

The VLDB Journal — The International Journal on Very Large Data Bases
Controlling access to documents: a formal access control model

ETRICS'06 Proceedings of the 2006 international conference on Emerging Trends in Information and Communication Security
A formal access control model for XML databases

SDM'05 Proceedings of the Second VDLB international conference on Secure Data Management
Protection of relationships in XML documents with the XML-BB model

ICISS'05 Proceedings of the First international conference on Information Systems Security
A purpose-based access control in native XML databases

Concurrency and Computation: Practice & Experience

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we define a security model for a native XML database which supports the Xupdate language. Our model is inspired by the SQL security model which is the most famous security model for database. We first define a generic access control model for tree data structures. Then, we apply our model to an XML database which supports the Xupdate language.