Abstract
Integration of version and access control of XML documents has the benefit of regulating access to rapidly growing archives of XML documents. Versioned XML documents provide us with valuable information on dependencies between document nodes, but, at the same time, presenting the risk of undesirable data disclosure. In this article, we introduce the notion of relevancy-based access control, which realizes protection of versioned XML documents by various types of relevancy, such as version dependencies, schema similarities, and temporal proximity. We define a new path query language XVerPath over XML document versions, which can be utilized for specifying relevancy-based access-control policies. We also introduce the notion of relevancy class, for collectively and compactly specifying relevancy-based policies. Regarding efficient processing of access requests, we propose the packed version model, which realizes space-efficient difference-based archives of versioned XML documents and, at the same time, providing efficient evaluation of XVerPath queries. Experimental results show reasonable performance superiority over conventional methods, which do not utilize version differences.
- Anutariya, C., Chatvichienchai, S., Iwaihara, M., Wuwongse, V., and Kambayashi, Y. 2003. A rule-based XML access control model. In Proc. 2nd Workshop on Rules and Rule Markup Languages for the Semantic Web. Springer Lecture Note in Computer Science 2876.Google Scholar
- Bertino, E., Bettini, C., Ferrari, E., and Samarat, P. 1996. A temporal access control mechanism for database systems. IEEE Trans. Knowl. Data Eng. 8, 1, 67--80. Google Scholar
Digital Library
- Bertino, E., Castano, S., Ferrari, E., and Mesiti, M. 2000. Specifying and enforcing access control policies for XML document sources. WWW Journal 3, 3, 139--151. Google Scholar
Digital Library
- Bouganim, L., Ngoc, F. D., and Pucheral, P. 2004. Client-based access control management for XML documents. In Proc. of the 30th VLDB Conf. 84--95. Google Scholar
Digital Library
- Chatvichienchai, S., Anutariya, C., Iwaihara, M., Wuwongse, V., and Kambayashi, Y. 2004. Towards integration of XML document access and version control. In Proc. Database and Expert Systems Applications (DEXA2004). Springer Lecture Note in Computer Science 3180, 791--800.Google Scholar
Cross Ref
- Chien, S. Y., Tsotras, V. J., and Zaniolo, C. 2001. Efficient management of multiversion documents by object referencing. In Proc. 27th VLDB Conf. 291--300. Google Scholar
Digital Library
- Damiani, E., di Vimercati, S. D. C., Paraboschi, S., and Samarati, P. 2002. A fine-grained access control system for XML documents. ACM Trans. Inf. Syst. Secur. 5, 2, 169--202. Google Scholar
Digital Library
- Gowadia, V. and Farkas, C. 2003. Rdf metadata for XML access control. In Proc. ACM Workshop on XML Security. 39--48. Google Scholar
Digital Library
- Iwaihara, M., Chatvichienchai, S., Anutariya, C., and Wuwongse, V. 2005. Relevancy based access control of versioned XML documents. In Proc. 10th ACM Symposium on Access Control Models and Technologies (SACMAT). 85--94. Google Scholar
Digital Library
- Kudo, M. and Hada, S. 2000. XML document security based on provisional authorization. In Proc. 7th ACM Conf. Computer and Communications Security. 87--96. Google Scholar
Digital Library
- Marian, A., Abiteboul, S., Cobna, G., and Mignet, L. 2001. Change-centric management of versions in an XML warehouse. In Proc. 27th VLDB Conf. 581--590. Google Scholar
Digital Library
- O'Neil, P. E., O'Neil, E. J., Pal, S., Cseri, I., Schaller, G., and Westbury, N. 2004. Ordpaths: Insert-friendly XML node labels. In Proc. ACM SIGMOD Conf. 903--908. Google Scholar
Digital Library
- Tatarinov, I., Viglas, S., Beyer, K. S., Shanmugasundaram, J., Shekita, E. J., and Zhang, C. 2002. Storing and querying ordered XML using a relational database system. In Proc. ACM SIGMOD Conf. 204--215. Google Scholar
Digital Library
- W3C. 1999. XML path language (Xpath) version 1.0. In W3C Recommendation 16 November 1999, http://www.w3.org/TR/xpath.Google Scholar
- Wong, R. and Lam, N. 2002. Managing and querying multi-version XML data with update logging. In Proc. 2002 ACM Symposium on Document Engineering. 74--81. Google Scholar
Digital Library
- XACML. 2005. extensible access control markup language (XACML) version 2.0. In http://www.oasis-open.org/specs/index.php#xacmlv2.0.Google Scholar
Index Terms
Relevancy-based access control and its evaluation on versioned XML documents
Recommendations
Relevancy based access control of versioned XML documents
SACMAT '05: Proceedings of the tenth ACM symposium on Access control models and technologiesIntegration of version and access control of XML documents has the benefit of regulating access to rapidly growing archives of XML documents. Versioned XML documents provide us with valuable informations on dependencies between document nodes, but at ...
Filtering XPath expressions for XML access control
XPath is a standard for specifying parts of XML documents and a suitable language for both query processing and access control of XML. In this paper, we use the XPath expression for representing user queries and access control for XML. And we propose an ...
Design of access control system for telemedicine secure XML documents
XML can supply the standard data type in information exchange format on a lot of data generated in running database or applied programs for a company by using the advantage that it can describe meaningful information directly. Accordingly since there ...






Comments