On the efficiency of secure XML broadcasting

Secure broadcasting of web documents is becoming a crucial requirement for many web-based applications. Under the broadcast document dissemination strategy, a web document source periodically broadcasts (portions of) its documents to a potentially large community of users, without the need for explicit requests. By secure broadcasting, we mean that the delivery of information to users must obey the access control policies of the document source. Traditional access control mechanisms that have been adapted for XML documents, however, do not address the performance issues inherent in access control. In this paper, a labeling scheme is proposed to support rapid reconstruction of XML documents in the context of a well-known method, called XML pool encryption. The proposed labeling scheme supports the speedy inference of structure information in all portions of the document. The binary representation of the proposed labeling scheme is also investigated. In the experimental results, the proposed labeling scheme is efficient in searching for the location of decrypted information.

[1]  Elisa Bertino,et al.  Securing XML Documents with Author-X , 2001, IEEE Internet Comput..

[2]  Hongjun Lu,et al.  Dynamically Updating XML Data: Numbering Scheme Revisited , 2004, World Wide Web.

[3]  Sabrina De Capitani di Vimercati,et al.  A fine-grained access control system for XML documents , 2002, TSEC.

[4]  Gabriel M. Kuper,et al.  Generalized XML security views , 2005, SACMAT.

[5]  Quanzhong Li,et al.  Indexing and Querying XML Data for Regular Path Expressions , 2001, VLDB.

[6]  Edith Cohen,et al.  Labeling dynamic XML trees , 2002, PODS '02.

[7]  Christian Geuer-Pollmann XML pool encryption , 2002, XMLSEC '02.

[8]  Matthew J. Moyer,et al.  A survey of security issues in multicast communications , 1999, IEEE Network.

[9]  Ernesto Damiani,et al.  Securing XML Documents , 2000, EDBT.

[10]  Wenfei Fan,et al.  Secure XML querying with security views , 2004, SIGMOD '04.

[11]  Elisa Bertino,et al.  Specifying and enforcing access control policies for XML document sources , 2004, World Wide Web.

[12]  SangKeun Lee,et al.  A Novel Labeling Scheme for Secure Broadcasting of XML Data , 2006, KDXD.

[13]  Elisa Bertino,et al.  A temporal key management scheme for secure broadcasting of XML documents , 2002, CCS '02.

[14]  J.W. Atwood,et al.  XML policy representation for secure multicast , 2005, Proceedings. IEEE SoutheastCon, 2005..

[15]  Luc Bouganim,et al.  Client-Based Access Control Management for XML documents , 2004, VLDB.

[16]  Jong P. Yoon Presto authorization: a bitmap indexing scheme for high-speed access control to XML documents , 2006, IEEE Transactions on Knowledge and Data Engineering.

[17]  Alban Gabillon,et al.  Regulating Access to XML documents , 2001, DBSec.

[18]  Mark Bartel,et al.  Xml-Signature Syntax and Processing , 2000 .

[19]  Jae-Gil Lee,et al.  Secure query processing against encrypted XML data using Query-Aware Decryption , 2006, Inf. Sci..

[20]  Toshiyuki Amagasa,et al.  XRel: a path-based approach to storage and retrieval of XML documents using relational databases , 2001, ACM Trans. Internet Techn..

[21]  David J. DeWitt,et al.  On supporting containment queries in relational database management systems , 2001, SIGMOD '01.

[22]  Ioana Manolescu,et al.  XMark: A Benchmark for XML Data Management , 2002, VLDB.

[23]  Nicolás Marín,et al.  Review of Data on the Web: from relational to semistructured data and XML by Serge Abiteboul, Peter Buneman, and Dan Suciu. Morgan Kaufmann 1999. , 2003, SGMD.