History-based access control for XML documents

Patrick Röder; Omid Tafreschi; Claudia Eckert

doi:10.1145/1229285.1229336

History-based access control for XML documents

Patrick Röder, Omid Tafreschi, Claudia Eckert

Technische Universität Darmstadt

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

9 Scopus citations

Abstract

XML is a widely used standard for information storage and exchange in today's IT systems. Therefore, it is essential to protect XML documents from unauthorized access. For this purpose, we present a model for access control for XML documents with three key features. First, we record the effects of the operations on the documents in a history, depending on which we can grant or deny access. Second, we use the history information to define permissions for the operations of our model including the transfer of document parts. Third, since the text content of an element can be composed of parts of text from different sources, we consider units smaller than the XML element as a protection unit. Therefore, we keep track of these parts and allow to define access to them individually.

Original language	English
Title of host publication	Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07
Pages	386-388
Number of pages	3
DOIs	https://doi.org/10.1145/1229285.1229336
State	Published - 2007
Externally published	Yes
Event	2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07 - Singapore, Singapore Duration: 20 Mar 2007 → 22 Mar 2007

Publication series

Name	Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07

Conference

Conference	2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07
Country/Territory	Singapore
City	Singapore
Period	20/03/07 → 22/03/07

Access to Document

10.1145/1229285.1229336

Cite this

@inproceedings{c39d6c7b90494714ab683560471992ac,

title = "History-based access control for XML documents",

abstract = "XML is a widely used standard for information storage and exchange in today's IT systems. Therefore, it is essential to protect XML documents from unauthorized access. For this purpose, we present a model for access control for XML documents with three key features. First, we record the effects of the operations on the documents in a history, depending on which we can grant or deny access. Second, we use the history information to define permissions for the operations of our model including the transfer of document parts. Third, since the text content of an element can be composed of parts of text from different sources, we consider units smaller than the XML element as a protection unit. Therefore, we keep track of these parts and allow to define access to them individually.",

author = "Patrick R{\"o}der and Omid Tafreschi and Claudia Eckert",

year = "2007",

doi = "10.1145/1229285.1229336",

language = "English",

isbn = "1595935746",

series = "Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07",

pages = "386--388",

booktitle = "Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07",

note = "2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07 ; Conference date: 20-03-2007 Through 22-03-2007",

}

Röder, P, Tafreschi, O & Eckert, C 2007, History-based access control for XML documents. in Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07. Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07, pp. 386-388, 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07, Singapore, Singapore, 20/03/07. https://doi.org/10.1145/1229285.1229336

History-based access control for XML documents. / Röder, Patrick; Tafreschi, Omid; Eckert, Claudia.
Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07. 2007. p. 386-388 (Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - History-based access control for XML documents

AU - Röder, Patrick

AU - Tafreschi, Omid

AU - Eckert, Claudia

PY - 2007

Y1 - 2007

N2 - XML is a widely used standard for information storage and exchange in today's IT systems. Therefore, it is essential to protect XML documents from unauthorized access. For this purpose, we present a model for access control for XML documents with three key features. First, we record the effects of the operations on the documents in a history, depending on which we can grant or deny access. Second, we use the history information to define permissions for the operations of our model including the transfer of document parts. Third, since the text content of an element can be composed of parts of text from different sources, we consider units smaller than the XML element as a protection unit. Therefore, we keep track of these parts and allow to define access to them individually.

AB - XML is a widely used standard for information storage and exchange in today's IT systems. Therefore, it is essential to protect XML documents from unauthorized access. For this purpose, we present a model for access control for XML documents with three key features. First, we record the effects of the operations on the documents in a history, depending on which we can grant or deny access. Second, we use the history information to define permissions for the operations of our model including the transfer of document parts. Third, since the text content of an element can be composed of parts of text from different sources, we consider units smaller than the XML element as a protection unit. Therefore, we keep track of these parts and allow to define access to them individually.

UR - http://www.scopus.com/inward/record.url?scp=34748815677&partnerID=8YFLogxK

U2 - 10.1145/1229285.1229336

DO - 10.1145/1229285.1229336

M3 - Conference contribution

AN - SCOPUS:34748815677

SN - 1595935746

SN - 9781595935748

T3 - Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07

SP - 386

EP - 388

BT - Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07

T2 - 2nd ACM Symposium on Information, Computer and Communications Security, ASIACCS '07

Y2 - 20 March 2007 through 22 March 2007

ER -

History-based access control for XML documents

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this