论文信息 - Secure XML Views

Secure XML Views

Recently more and more data is stored in XML format. While XML increases flexibility, it also raises new security challenges such as access control for multilevel security. This paper considers the problem of generating secure and free of semantic conflicts partial views from XML documents. In the context of DTD-based multilevel security classification, we develop techniques to generate single-level DTDs for partial views. For this purpose, we define and manipulate two graphs, a Minimum Semantic Conflict Graph (MSCG) and a Multi-Plane DTD Graph (MPG). MSCG contains all semantic relationships among the XML tags that must be preserved within any partial view. Intuitively, MSCG ensures the generated views will be free of semantic conflict. MPG captures the structural relationships among tags and their security classifications. We show that secure views can be generated from the first reduced form MPG0 (i.e., an MPG that does not have edges outside the targeted security space), by ignoring unauthorized security planes. We define a set of procedures to restructure a general MPG into an MPG0 according to the corresponding MSCG.

Csilla Farkas | Andrei Stoica | C. Farkas | Andrei Stoica

[1] Dan Suciu,et al. A query language and optimization techniques for unstructured data , 1996, SIGMOD '96.

[2] Serge Abiteboul,et al. Querying Semi-Structured Data , 1997, Encyclopedia of Database Systems.

[3] Jennifer Widom,et al. Representing and querying changes in semistructured data , 1998, Proceedings 14th International Conference on Data Engineering.

[4] T. Bray,et al. XML and the Second-Generation WEB , 1999 .

[5] Catriel Beeri,et al. Schemas for Integration and Translation of Structured and Semi-structured Data , 1999, ICDT.

[6] Michiharu Kudo,et al. XML document security based on provisional authorization , 2000, CCS.

[7] Elisa Bertino,et al. Author-X: A Java-Based System for XML Data Protection , 2000, DBSec.

[8] Alban Gabillon,et al. Regulating Access to XML documents , 2001, DBSec.

[9] Sabrina De Capitani di Vimercati,et al. XML access control systems: a component-based approach , 2002, Informatica.

[10] Elisa Bertino,et al. Specifying and enforcing access control policies for XML document sources , 2004, World Wide Web.