Author-χ: A Java-Based System For XML Data Protection

Bertino, Elisa; Braun, Mikio L.; Castano, Silvana; Ferrari, Elena; Mesiti, Marco

doi:10.1007/0-306-47008-x_2

Cited by 38 publications

(42 citation statements)

References 3 publications

(2 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Bertino et al [3] have developed Author-X, a Java based system to secure XML documents that enforces access control policies at various granularities and corresponding user credentials. Author-X encodes security policies for a set of XML documents in an XML file referred to as the policy base containing both permissions and prohibitions.…”

Section: Related Workmentioning

confidence: 99%

Creating non-decomposable stream bundles in multimedia web services using uSMIL

Kodali

Farkas

Wijesekera

2004

Proceedings of the 2004 Workshop on Secure Web Service - SWS '04

View full text Add to dashboard Cite

Technical advances in networks, operating systems and web based services are enabling new web-based services such as audiovisual surveillance, monitoring and recording of unfolding real world scenes. Leaving room to alter the chronology of such real-world recordings would facilitate the ability to fabricate audiovisual evidence, thereby seriously eroding emerging public trust on these up and coming services. One way of avoiding this problem is to be able to specify which chronology building composition operators -otherwise known as multimedia synchronization constructs -such as before, after, simultaneously etc., have more rigid failure semantics. Existing W3C standard for multimedia services, the synchronized multimedia integration language (SMIL) does not provide them. In order to address this deficiency, we propose uSMIL -an extension of SMIL that allows the creation of non-decomposable stream bundles with an all or nothing playout semantics. Here we present a report on our work in progress that defines a formal operational semantics for uSMIL and show some of its algebraic properties.

show abstract

Section: Related Workmentioning

confidence: 99%

Creating non-decomposable stream bundles in multimedia web services using uSMIL

Kodali

Farkas

Wijesekera

2004

Proceedings of the 2004 Workshop on Secure Web Service - SWS '04

View full text Add to dashboard Cite

show abstract

“…Bertino et al [2,1] defined access rules at the schema level that apply to all documents conforming to the schema. They define read element/attribute, navigate document, modify/delete contents of element/attribute and add/modify/delete element/attribute.…”

Section: Access-rightmentioning

confidence: 99%

Derived access control specification for XML

Goel

Clifton

Rosenthal

2003

Proceedings of the 2003 ACM Workshop on XML Security

View full text Add to dashboard Cite

The growth in interchange of business and other sensitive data has led to increasing interest in access control. While broad-based access control may be adequate for library-style document bases, new applications demand different access rights on different documents, or different parts of a document. Methods have been developed that enforce fine-grained access control in XML, but the administrative complexity of hard-coding rules is still a challenge. We present an XQuery-based approach for deriving access control rules from schemalevel rules, document or database content, or rules on other documents. This approach provides a novel capability to exploit non-structural information in broadlyapplicable rules, making it feasible to specify data-and context-dependent rules for large document sets.

show abstract

“…But some of the XML data is sensitive, requiring as such the development of models and tools to express access control requirements for multilevel security XML documents. Access control models have been proposed by several researchers [3,4,[7][8][9]. The main focus of these works is to assign access permissions (e.g., security classification labels) to XML documents and tags.…”

Section: Introductionmentioning

confidence: 99%

“…Single security level views can be generated from this file by suppressing all nodes outside the permitted security area [3,7,9]. Figure l(middle) shows the Unclassified partial view of the XML document in Figure 1 (left).…”

Section: Introductionmentioning

confidence: 99%

Secure XML Views

Stoica¹,

Farkas²

2003

Research Directions in Data and Applications Security

View full text Add to dashboard Cite

Recently more and more data is stored in XML format. While XML increases flexibility, it also raises new security challenges such as access control for multilevel security. This paper considers the problem of generating secure and free of semantic conflicts partial views from XML documents. In the context of DTD-based multilevel security classification, we develop techniques to generate single-level DTDs for partial views. For this purpose, we define and manipulate two graphs, a Minimum Semantic Conflict Graph (MSCG) and a Multi-Plane DTD Graph (MPG). MSCG contains all semantic relationships among the XML tags that must be preserved within any partial view. Intuitively, MSCG ensures the generated views will be free of semantic conflict. MPG captures the structural relationships among tags and their security classifications. We show that secure views can be generated from the first reduced form MPGo (i.e., an MPG that does not have edges outside the targeted security space), by ignoring unauthorized security planes. We define a set of procedures to restructure a general MPG into an MPGo according to the corresponding MSCG.

show abstract

Author-χ: A Java-Based System For XML Data Protection

Cited by 38 publications

References 3 publications

Creating non-decomposable stream bundles in multimedia web services using uSMIL

Creating non-decomposable stream bundles in multimedia web services using uSMIL

Derived access control specification for XML

Secure XML Views

Contact Info

Product

Resources

About