A translation approach to portable ontology specifications
Knowledge Acquisition - Special issue: Current issues in knowledge modeling
Logical foundations of object-oriented and frame-based languages
Journal of the ACM (JACM)
XML document security based on provisional authorization
Proceedings of the 7th ACM conference on Computer and communications security
How to structure and access XML documents with ontologies
Data & Knowledge Engineering - Special issue on heterogeneous information resources need semantic access
Flexible authentication of XML documents
CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Xml Databases and the Semantic Web
Xml Databases and the Semantic Web
Proceedings of the First International Semantic Web Conference on The Semantic Web
ISWC '02 Proceedings of the First International Semantic Web Conference on The Semantic Web
XML Access Control Systems: A Component-Based Approach
Proceedings of the IFIP TC11/ WG11.3 Fourteenth Annual Working Conference on Database Security: Data and Application Security, Development and Directions
The inference problem: a survey
ACM SIGKDD Explorations Newsletter
Towards Access Control for Logical Document Structures
DEXA '98 Proceedings of the 9th International Workshop on Database and Expert Systems Applications
Regulating access to XML documents
Das'01 Proceedings of the fifteenth annual working conference on Database and application security
ICEC '05 Proceedings of the 7th international conference on Electronic commerce
Policy-based dissemination of partial web-ontologies
Proceedings of the 2005 workshop on Secure web services
Semantically enhanced enforcement of mobile consumer's privacy preferences
Proceedings of the 2006 ACM symposium on Applied computing
Semantics-aware security policy specification for the semantic web data
International Journal of Information and Computer Security
XML secure views using semantic access control
Proceedings of the 2010 EDBT/ICDT Workshops
A systematic literature review of inference strategies
International Journal of Information and Computer Security
Specifying an access control model for ontologies for the semantic web
SDM'05 Proceedings of the Second VDLB international conference on Secure Data Management
| Hi-index | 0.00 |
In this paper we study the security impact of large scale, semantically enhanced data processing in distributed databases. We present an ontology-supported security model to detect undesired inferences via replicated XML data. Our model is able to detect inconsistent security classifications of replicated data. Wc propose the Ontology Guided XML Security Engine (Oxsegin) architecture to identify data items exposed to ontology-based inference attacks. The main technical contribution is the development of the Probabilistic Inference Engine used by Oxsegin. The inference engine operates on DTD files, corresponding to XML documents, and detects tags that are ontologically equivalent, i.e., can be abstracted to the same concept in the ontology, but may be different syntactically. Potential illegal inferences occur when two ontologically equivalent tags have contradictory security classifications. These tags are marked with a security violation pointer (SVP). Confidence level coefficients, attached to every security violation pointer, differentiate among the detected SVPs based on the system's confidence in an indicated inference.