Organizations are increasingly using the the eXtensible Markup Language (XML) for document representation and exchange on the Web To protect an XML document from unauthorized access, authorizations are specified on the XML document itself or on the Document Type Definition (DTD) that defines the type of the XML document Each XML document or DTD is associated with an XML Access Sheet (XAS) that specifies the authorizations The DTD not being an XML document complicates the specification and enforcement of authorization policies To overcome the above mentioned problem, XML Schemas need to be used instead of DTDs In this paper, we show how XAS DTDs can be specified using XML Schemas and propose an access control architecture that can process XAS authorizations Enforcement of access control allows users to view only those parts of the documents that they are authorized to view These parts may not conform to the schema of the original document and hence may not be valid Towards this end we propose a schema loosening algorithm that generates a schema that will be satisfied by documents satisfying the access control requirements.
[1]
Elisa Bertino,et al.
Securing XML Documents with Author-X
,
2001,
IEEE Internet Comput..
[2]
Elisa Bertino,et al.
On specifying security policies for web documents with an XML-based language
,
2001,
SACMAT '01.
[3]
Elisa Bertino,et al.
Specifying and enforcing access control policies for XML document sources
,
2004,
World Wide Web.
[4]
Jong P. Yoon.
High-speed Access Control for XML Documents
,
2003,
DBSec.
[5]
Alban Gabillon,et al.
Regulating Access to XML documents
,
2001,
DBSec.
[6]
Sabrina De Capitani di Vimercati,et al.
A fine-grained access control system for XML documents
,
2002,
TSEC.
[7]
Elisa Bertino,et al.
Secure and selective dissemination of XML documents
,
2002,
TSEC.
[8]
Ernesto Damiani,et al.
Design and implementation of an access control processor for XML documents
,
2000,
Comput. Networks.