IPAC: an interactive approach to access control for semi-structured data

Authors:
Sriram Mohan;Yuqing Wu
Affiliations:
Computer Science Department, Indiana University, Bloomington;School of Informatics, Indiana University, Bloomington
Venue:
VLDB '06 Proceedings of the 32nd international conference on Very large data bases
Year:
2006

Citing 9
Cited 2

Flexible support for multiple access control policies

ACM Transactions on Database Systems (TODS)
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Specifying access control policies for XML documents with XPath

Proceedings of the ninth ACM symposium on Access control models and technologies
Secure XML querying with security views

SIGMOD '04 Proceedings of the 2004 ACM SIGMOD international conference on Management of data
AC-XML documents: improving the performance of a web access control module

Proceedings of the tenth ACM symposium on Access control models and technologies
Securing XML data in third-party distribution systems

Proceedings of the 14th ACM international conference on Information and knowledge management
The case for access control on XML relationships

Proceedings of the 14th ACM international conference on Information and knowledge management
Access control for XML: a dynamic query rewriting approach

Proceedings of the 14th ACM international conference on Information and knowledge management
ACXESS - Access Control for XML with Enhanced Security Specifications

ICDE '06 Proceedings of the 22nd International Conference on Data Engineering

Hasslefree: simplified access control management for XML documents

ICDCIT'07 Proceedings of the 4th international conference on Distributed computing and internet technology
Pragmatic XML access control using off-the-shelf RDBMS

ESORICS'07 Proceedings of the 12th European conference on Research in Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

We propose IPAC(Interactive aPproach to Access Control for semi-structured data), a framework for XML access constraint specification and security view selection. IPAC clearly demarcates access constraint specification, access control strategy and security mechanism (implementation). It features a declarative access constraint specification language, a global access control strategy configuration unit, and an automatic security view generation and ranking tool. IPAC is the first system that assists the DBA in specifying access control strategies and access constraints on XML data, and helps the DBA in choosing the optimal plan that implements the specified strategy and access constraints accurately and efficiently.