Ontology-Based Secure XML Content Distribution

This paper presents an ontology-driven secure XML content distribution scheme. This scheme first relies on a semantic access control model for XML documents that achieves three objectives: (1) representing flexible and evolvable policies, (2) providing a high-level mapping and interoperable interface to documents, and (3) automating the granting of fine-grained access rights by inferring on content semantics. A novel XML document parsing mechanism is defined to delegate document access control enforcement to a third party without leaking the document XML schema to it. The Encrypted Breadth First Order Labels (EBOL) encoding is used to bind semantic concepts with XML document nodes and to check the integrity of a document.

[1]  Elisa Bertino,et al.  Secure Dissemination of XML Content Using Structure-based Routing , 2006, 2006 10th IEEE International Enterprise Distributed Object Computing Conference (EDOC'06).

[2]  Tim Moses,et al.  EXtensible Access Control Markup Language (XACML) version 1 , 2003 .

[3]  Sabrina De Capitani di Vimercati,et al.  A fine-grained access control system for XML documents , 2002, TSEC.

[4]  Peng Liu,et al.  A Flexible Framework for Architecting XML Access Control Enforcement Mechanisms , 2004, Secure Data Management.

[5]  Bhavani Thuraisingham,et al.  Semantic-Aware Data Protection in Web Services , 2006 .

[6]  Ramakrishnan Srikant,et al.  Order preserving encryption for numeric data , 2004, SIGMOD '04.

[7]  Timothy W. Finin,et al.  Authorization and privacy for semantic Web services , 2004, IEEE Intelligent Systems.

[8]  Bhavani M. Thuraisingham,et al.  ROWLBAC: representing role based access control in OWL , 2008, SACMAT '08.

[9]  Makoto Murata,et al.  XML access control using static analysis , 2006, TSEC.

[10]  Andreas Schaad,et al.  Distributed Access Control For XML Document Centric Collaborations , 2008, 2008 12th International IEEE Enterprise Distributed Object Computing Conference.

[11]  Elisa Bertino,et al.  A New Model for Secure Dissemination of XML Content , 2008, IEEE Transactions on Systems, Man, and Cybernetics, Part C (Applications and Reviews).

[12]  Ernesto Damiani,et al.  Fine grained access control for SOAP E-services , 2001, WWW '01.

[13]  Dieter Gollmann,et al.  Computer Security - ESORICS 2005, 10th European Symposium on Research in Computer Security, Milan, Italy, September 12-14, 2005, Proceedings , 2005, ESORICS.

[14]  Dan Suciu,et al.  Controlling Access to Published Data Using Cryptography , 2003, VLDB.

[15]  Gabriel M. Kuper,et al.  Generalized XML security views , 2005, SACMAT '05.

[16]  Deborah L. McGuinness,et al.  OWL Web ontology language overview , 2004 .

[17]  Hongchi Shi,et al.  XML access control for semantically related XML documents , 2003, 36th Annual Hawaii International Conference on System Sciences, 2003. Proceedings of the.

[18]  Wenfei Fan,et al.  Secure XML querying with security views , 2004, SIGMOD '04.

[19]  María-del-Mar Gallardo,et al.  Semantic Access Control Model: A Formal Specification , 2005, ESORICS.