Abstract
We propose an access control scheme for developing authorization rules for XML documents, allowing flexible data granularity and authorization propagation. To simplify the complex access control policies in XML, we introduce a new tool: Authorization Policy Sheet (APS). Complex access control rules can be easily described in an APS. The administrator of a system can easily manage the access control of the system. With aid of Data Type Definitions(DTD), the policies given in an APS can be converted into a standard XML code that can be implemented in a normal XML environment.
Chapter PDF
Similar content being viewed by others
References
Bertino, E., Ferrari, E.: Secure and selective dissemination of XML documents. ACM Transaction on Information and System 5(3) (2002)
Castano, S., Fugini, M., Martella, G., Samarati, P.: Database Security. Addision-Wesley, London (1995)
Damiani, E., di Vimercati, S.D.C., Fernndez-Medina, E., Samarati, P.: An access control system for svgdocuments. In: Proceedings of the Sixteenth Annual IFIPWG 11.3 Working Conference on Data and Application Security, pp. 121–135 (2000)
Damiani, E., Vimercati, S., Paraboaschi, S., Samarati, P.: Design and implementation of an access processor for XML documents. In: Proceedings of the 9th international WWW conference, pp. 59–75 (2000)
Damiani, E., De Capitani di Vimercati, S., Paraboschi, S., Samarati, P.: Securing XML documents. In: Zaniolo, C., Grust, T., Scholl, M.H., Lockemann, P.C. (eds.) EDBT 2000. LNCS, vol. 1777, pp. 121–135. Springer, Heidelberg (2000)
Gabillon, A., Bruno, E.: Regulating access to xml documents. In: Proceedings of the fifteenth annual working conference on Database and application security, pp. 299–314 (2001)
Kudo, M., Hada, S.: XML document security based on provisional authorizations. In: Proceedings of the 7th ACM Conference on Computer and Communications Security, Athens, Greece, pp. 87–96 (2000)
Lim, C.-H., Park, S., Son, S.H.: Access control of XML documents considering update operations. In: Proceedings of ACM Workshop on XML Security, pp. 49–59 (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wu, J., Mu, Y., Seberry, J., Ruan, C. (2005). Access Policy Sheet for Access Control in Fine-Grained XML. In: Enokido, T., Yan, L., Xiao, B., Kim, D., Dai, Y., Yang, L.T. (eds) Embedded and Ubiquitous Computing – EUC 2005 Workshops. EUC 2005. Lecture Notes in Computer Science, vol 3823. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11596042_129
Download citation
DOI: https://doi.org/10.1007/11596042_129
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-30803-4
Online ISBN: 978-3-540-32296-2
eBook Packages: Computer ScienceComputer Science (R0)