论文信息 - Delegatable Access Control for Fine-Grained XML

Delegatable Access Control for Fine-Grained XML

The access control mechanisms are critical to ensure security in XML (extensible markup language). Several such mechanisms have been used or proposed; however, the notion of delegation in XML has not been studied in the literature. In this paper, we propose an access control model encapsuling delegation authorization rules for XML documents that allow flexible data granularity and limited inference protection. Our access control policy specification is basically DTD-based. It can also be considered to be document-based

Yi Mu | Jing Wu | Jennifer Seberry | Chun Ruan

[1] Ernesto Damiani,et al. Design and implementation of an access control processor for XML documents , 2000, Comput. Networks.

[2] Sabrina De Capitani di Vimercati,et al. An access control system for svgdocuments , 2000 .

[3] Blake Dournaee,et al. XML Security , 2002 .

[5] Michiharu Kudo,et al. XML document security based on provisional authorization , 2000, CCS.

[6] Ernesto Damiani,et al. Design and implementation of an access processor for xml documents , 2000 .

[7] Silvana Castano,et al. Database Security , 1997, IFIP Advances in Information and Communication Technology.

[8] Morris Sloman,et al. Policy driven management for distributed systems , 1994, Journal of Network and Systems Management.

[9] Sang Hyuk Son,et al. Access control of XML documents considering update operations , 2003, XMLSEC '03.

[10] Elisa Bertino,et al. Secure and selective dissemination of XML documents , 2002, TSEC.

[11] Teresa F. Lunt,et al. Access Control Policies for Database Systems , 1988, DBSec.

[12] Ernesto Damiani,et al. Securing XML Documents , 2000, EDBT.

[13] Vijay Varadharajan,et al. Logic-Based Reasoning on Delegatable Authorizations , 2002, ISMIS.