Wei Sun,Da-xin Liu,Tong Wang

DOI: https://doi.org/10.1007/11599517_64

2005-01-01

Abstract:As large corporations and organizations increasingly exploit the Internet as a means of improving business-transaction efficiency and productivity, it is increasingly common to find operational data and other business information in XML format. Access control for XML database is non-trivial subjects. A number of recent research efforts have considered access control models for XML data[1−5]. Our first contribution is a novel model for specifying XML security access control. Given an XML document accompanied by a document DTD, we allow a two-stage access control policies to pledge to security access XML document at file-level and element-level respectively. On the element-level access control, our approach for these access control policies is based on the novel notion of hide-node views. While the hide-node view DTD is exposed to authorized users, neither the internal XPath annotations nor the full document DTD is visible. Authorized users can only operate data over the hide-node view, making use of the exposed view DTD to access data. Our hide-node view mechanism guarantees that unauthorized user cannot access sensitive data and protects the schema information from access by unauthorized users. We think that the schema information also is sensitive data and should be protected from gain through the data accessing.

Houari Mahfoud,Abdessamad Imine

DOI: https://doi.org/10.48550/arXiv.1112.2605

2011-12-13

Abstract:Most state-of-the art approaches for securing XML documents allow users to access data only through authorized views defined by annotating an XML grammar (e.g. DTD) with a collection of XPath expressions. To prevent improper disclosure of confidential information, user queries posed on these views need to be rewritten into equivalent queries on the underlying documents. This rewriting enables us to avoid the overhead of view materialization and maintenance. A major concern here is that query rewriting for recursive XML views is still an open problem. To overcome this problem, some works have been proposed to translate XPath queries into non-standard ones, called Regular XPath queries. However, query rewriting under Regular XPath can be of exponential size as it relies on automaton model. Most importantly, Regular XPath remains a theoretical achievement. Indeed, it is not commonly used in practice as translation and evaluation tools are not available. In this paper, we show that query rewriting is always possible for recursive XML views using only the expressive power of the standard XPath. We investigate the extension of the downward class of XPath, composed only by child and descendant axes, with some axes and operators and we propose a general approach to rewrite queries under recursive XML views. Unlike Regular XPath-based works, we provide a rewriting algorithm which processes the query only over the annotated DTD grammar and which can run in linear time in the size of the query. An experimental evaluation demonstrates that our algorithm is efficient and scales well.

Cryptography and Security,Databases

Wei Sun,Da-xin Liu,Tong Wang

DOI: https://doi.org/10.1007/11610496_109

2006-01-01

Abstract:XML becomes a standard format for data interchanges on Internet, especially in E-commerce. Although XML technology has been widely used, the research and development on XML security is still at the early stage. The control of XML access is important for protecting XML documents from being illegally modified or accessed. Most of available models utilize a single level check point. In this paper, we proposed an access control model with dual level access control: file-level and element-level (or attribute-level). The model allows adopt the XBLP policy with file-level security, while employs Hide-Node View for element-level security. The architecture framework of the access control model and implementation are briefly described.

LIU Sheng-Ping,LIN Zuo-Quan,MEI Jing,YUE An-Bu

DOI: https://doi.org/10.1360/jos171089

2006-01-01

Journal of Software

Abstract:The problem that XML formally governs syntax only but not semantics has been recognized as a serious barrier for XML-Based data integration and the extension of current Web to the semantic Web. To address this problem, the XML Semantics Definition Language (XSDL) is proposed to explicitly express the XML author's intended meaning and a model-theoretic semantics for XML. In this way, the XML becomes a sub-language of RDF (resource description framework) in expressivity and the XML data can be semantics-preserving transformed to the RDF data. The semantic validity and entailment problem of XML documents are further provided and they are reduced to the knowledge base unsatisfiability problem in description logic language SHOIN∆

蔡飞,贝佳,陶列骏,潘金贵

DOI: https://doi.org/10.3969/j.issn.1002-137X.2004.05.020

2004-01-01

Computer Science

Abstract:XML becomes more and more popular in Web implementation as a well-structured language. XML database and related technologies are also rapidly developing. But if security, index structure, transaction processing are considered, relational database is still the more reliable choice. Based on relational database, we design a kind of middleware implementing the XQuery, so combine the best of both technologies.

Igor Tatarinov,Stratis D. Viglas,Kevin Beyer,Jayavel Shanmugasundaram,Eugene Shekita,Chun Zhang

DOI: https://doi.org/10.1145/564691.564715

2002-01-01

Abstract:XML is quickly becoming the de facto standard for data exchange over the Internet. This is creating a new set of data management requirements involving XML, such as the need to store and query XML documents. Researchers have proposed using relational database systems to satisfy these requirements by devising ways to "shred" XML documents into relations, and translate XML queries into SQL queries over these relations. However, a key issue with such an approach, which has largely been ignored in the research literature, is how (and whether) the ordered XML data model can be efficiently supported by the unordered relational data model. This paper shows that XML's ordered data model can indeed be efficiently supported by a relational database system. This is accomplished by encoding order as a data value. We propose three order encoding methods that can be used to represent XML order in the relational data model, and also propose algorithms for translating ordered XPath expressions into SQL using these encoding methods. Finally, we report the results of an experimental study that investigates the performance of the proposed order encoding methods on a workload of ordered XML queries and updates.

Jean Berstel,Luc Boasson

DOI: https://doi.org/10.1007/s00236-002-0085-4

2002-08-01

Acta Informatica

Abstract:Abstract. We consider XML documents described by a document type definition (DTD). An XML-grammar is a formal grammar that captures the syntactic features of a DTD. We investigate properties of this family of grammars. We show that every XML-language basically has a unique XML-grammar. We give two characterizations of languages generated by XML-grammars, one is set-theoretic, the other is by a kind of saturation property. We investigate decidability problems and prove that some properties that are undecidable for general context-free languages become decidable for XML-languages. We also characterize those XML-grammars that generate regular XML-languages.

computer science, information systems

R. Rajugan,Elizabeth Chang,Tharam S. Dillon,Ling Feng

DOI: https://doi.org/10.1007/11568322_6

2005-01-01

Abstract:Since the early software models, abstraction and conceptual semantics have proven their importance in software engineering methodologies. For example, Object-Oriented conceptual modeling offers the power in describing and modeling real-world data semantics and their inter-relationships in a form that is precise and comprehensible to users. Conversely, XML is becoming the dominant standard for storing, describing and interchanging data among various Enterprises Information Systems and databases. With the increased reliance on such self-describing, schema-based, semi-structured data language/(s), there exists a requirement to model, design, and manipulate XML data and associated semantics at a higher level of abstraction than at the instance level. But, existing Object-Oriented conceptual modeling languages provide insufficient modeling constructs for utilizing XML schema like data descriptions and constraints, and most semi-structured schema languages lack the ability to provide higher levels of abstraction (such as conceptual models) that are easily understood by humans. To this end, it is interesting to investigate conceptual and schema formalisms as a means of providing higher level semantics in the context of XML-related data engineering. In this paper, we use XML view as a case in point and present a three-layered view model with illustrated examples taken from a real-world application domain. We focus on conceptual and schema view definitions, view constraints, and the conceptual query operators.

王亮,高阳,陈世福,陈震解

DOI: https://doi.org/10.3969/j.issn.1001-3695.2002.08.024

2002-01-01

Abstract:The data-characteristic leads to a close relationship between XML and databases.The method of describing the structure of relation database using XML is studied in this paper. XSL is used to transform XML, which describes the abstract structure of databases, into SQL . SQL is supported by a certain database and used to generate physical tables. Experiments show the validity of this method.

Jun Gao,Tengjiao Wang,Dongqing Yang

DOI: https://doi.org/10.1007/11610113_10

2006-01-01

Abstract:The security of the published XML data receives high attention due to the sensitive nature of the data in some areas. This paper proposes an XML view publishing method called XFlat. Compared with other methods, XFlat focuses on the efficiency of query evaluation over the published XML view. XFlat decomposes a XML tree into a set of sub-trees with the same accessibility on each node to all users, encrypts and stores each sub-tree in a flat sequential way. This storage strategy can avoid the nested encryption in view construction and decryption in the query evaluation. In addition, we discuss how to generate the user specific schema and minimize the total space cost of XML view with the consideration of the size of the relationship among the sub-trees. The final experimental results demonstrate the effectiveness and efficiency of our method.

Joachim Biskup,Lan Li

DOI: https://doi.org/10.1109/tdsc.2012.86

2013-01-01

Abstract:This work aims at treating the inference problem in XML documents that are assumed to represent potentially incomplete information. The inference problem consists in providing a control mechanism for enforcing inference-usability confinement of XML documents. More formally, an inference-proof view of an XML document is required to be both indistinguishable from the actual XML document to the clients under their inference capabilities, and to neither contain nor imply any confidential information. We present an algorithm for generating an inference-proof view by weakening the actual XML document, i.e., eliminating confidential information and other information that could be used to infer confidential information. In order to avoid inferences based on the schema of the XML documents, the DTD of the actual XML document is modified according to the weakening operations as well, such that the modified DTD conforms with the generated inference-proof view.

Rajagopal Rajugan,Elizabeth Chang,Tharam S Dillon,Ling Feng

DOI: https://doi.org/10.1007/978-3-540-45227-0_16

2003-01-01

Abstract:The exponential growth and the nature of Internet and web-based applications made eXtensible Markup Language (XML) as the de-facto standard for data exchange and data dissemination. Now it is gaining momentum in replacing conventional data models for data representation. XML with its self-describing hierarchical structure and its associated XML Schema (XSD), provide the flexibility and manipulative power needed to accommodate distributive, heterogeneous data. But due to XML's non-scalar, set-based semi-structured nature and ambiguity, traditional data design models lack the capability to conceptually model, design and successfully implement a data model. Due to this, organising and extracting information of XML documents with their conceptual and operational semantics intact is still a challenging task. In this paper, we propose a generic, language independent conceptual view mechanism for XML documents (XML View) to enhance conceptual modelling and designing capabilities of XML based information systems. We focus view definition at the conceptual level and the semantics required in accommodating such view mechanism at this higher level of abstraction.

郭晋凯,柏文阳,刘铭

DOI: https://doi.org/10.3724/sp.j.1087.2009.03409

2009-01-01

Journal of Computer Applications

Abstract:In order to facilitate users to update XML documents,while ensuring security,the paper proposed an update control method for XML based on the security update views. To generate a security update view,the annotations of updating constrains were added to Document Type Definition (DTD) elements of a security view,such as Insert,Delete and Replace,to instruct the updating process. In this way,different security update views were provided to different users for their updating operations. For an update query Q on the security update view,this method provided an algorithm to check the authorization of Q and another algorithm to rewrite it to an equivalent operation over the original XML document. The method can deal with updating operations on XML effectively. At the same time,it provides a user with the security update view,which is visible to him only and avoids information leakage.

K Yue,Zc Xu,Zm Guo,Ay Zhou

DOI: https://doi.org/10.1007/3-540-36901-5_5

2003-01-01

Abstract:With the rapid development of Internet, XML becomes the standard for data representation, integration and exchange on the web. In order to fully evolve XML into a universal data representation and sharing format, it is necessary to update XML documents efficiently while preserving constraints. We consider an important class of constraints, XML keys. In this paper, based on XML keys and the constraint-preserving normalized storage of XML over relational databases, we present a novel method for updating XML data. Our method first propagates the update on XML into the relational database. Then taking the updated relational data and the original document as input, the resulting XML document updated can be produced through locating the positions of updates in the original one by annotation technology. Preliminary performance studies have shown that our method is very effective and efficient.

ZJ Tan,JJ Xu,W Wang,B Shi

DOI: https://doi.org/10.1109/cit.2005.175

2005-01-01

Abstract:This paper studies the XML storage in relations. Unlike traditional techniques, it considers the semantics expressed by functional dependencies. We propose an algorithm for mapping DTD to relational schema, which preserves not only the content and structure but also the semantics of original XML documents. To tackle the problem of constraints expression, we introduce a way to define functional dependencies and normalization for DTD. In a normalized DTD, every constraints expressed by functional dependencies can be concluded to keys. So we use the key definitions for XML as the foundation for relation generation, and maintain the keys in relations. After investigating the relationship between functional dependencies in XML documents with the corresponding ones in relations, we further prove that, if the original DTD is normalized, the generated relations will be in BCNF. So our method keeps the good properties of normalized DTD, and can fully leverage the relational technology

Jian Tang,Shuigeng Zhou

DOI: https://doi.org/10.1007/11547273_3

2005-01-01

Abstract:Query rewriting has many applications, such as data caching, query optimization, schema integration, etc. This issue has been studied extensively for relational databases and, as a result, the technology is maturing. For XML data, however, it is still at the developing stage. Several works have studied this issue for XML documents recently. They are mostly application-specific, being that they address the issues of query rewriting in a specific domain, and develop methods to meet the specific requirements. In this paper, we study this issue in a general setting, and concentrate on the correctness requirement. Our approach is based on the concept of query containment for XPath queries, and address the question of how that concept can be adopted to develop solutions to query rewriting problem. We study various conditions under which the efficiencies and applicability can trade each other at different levels, and introduce algorithms accordingly.

Ali Alwehaibi,Mustafa Atay

DOI: https://doi.org/10.48550/arXiv.1909.11057

2019-09-24

Databases

Abstract:There is considerable amount of sensitive XML data stored in relational databases. It is a challenge to enforce node level fine-grained authorization policies for XML data stored in relational databases which typically support table and column level access control. Moreover, it is common to have conflicting authorization policies over the hierarchical nested structure of XML data. There are a couple of XML access control models for relational XML databases proposed in the literature. However, to our best knowledge, none of them discussed handling authorization conflicts with conditions in the domain of relational XML databases. Therefore, we believe that there is a need to define and incorporate effective fine-grained XML authorization models with conflict handling mechanisms in the presence of conditions into relational XML databases. We address this issue in this study.

Shengping Liu,Jing Mei,Anbu Yue,Zuoquan Lin

DOI: https://doi.org/10.1007/978-3-540-31839-2_6

2004-01-01

Abstract:The problem that “XML formally governs syntax only – not semantics” has been a serious barrier for XML-based data integration and the extension of current Web to Semantic Web. To address this problem, we propose the XML Semantics Definition Language(XSDL) to express XML author's intended meaning and propose a model-theoretic semantics for XML. Consequently, XML becomes a sub-language of RDF in expressiveness and XML data can be semantics-preserving transformed into RDF data. We further discuss the semantic entailment and validity of the XML documents.

Xu Baowen,Jiang Jixiang,Lu Jianjiang,Wang Peng,Kang Dazhou

2005-01-01

Abstract:The widely use of eXtensible Markup Language (XML) raises the importance of security and access control for XML documents. Besides access control for XML document on node-level, it is also important to control users for accessing association between the nodes. Inference detection plays a central role in association-level access control. In this paper we propose a logic-based approach for inference detection in querying XML document. At first, Basic information is obtained from user query logs and "information-trees" are used to represent all the information a user gets. Then Logic-based method is used to find overlapping parts between "information-trees". Finally, inference detection is achieved by merging the "information-trees". This approach can be used to detect much common inference channels, and can serve as a basic model for future extension.

Rajagopal Rajugan,Elizabeth Chang,Tharam S. Dillon,Ling Feng

2005-01-01

Abstract:Extensible Markup Language (XML), with its rich set of semantics and constraints, is becoming the dominant standard for storing, describing and interchanging data among various Enterprises Information Systems (EIS) and databases. With the increased reliance on such semi-structured data and schemas, there exists a requirement to model, design, and constrain semi-structured data and the associated semantics at a higher level of abstraction than at the instance or data level. But most semi-structured schema languages lack the ability to provide higher levels of abstraction, such as visual constraints, that are easily understood by humans. Conversely, though Object-Oriented (OO) conceptual models offers the power in describing and modeling real-world data semantics, constraints and their inter-relationships in a form that is precise and comprehensible to users, they provide insufficient modeling constructs for utilizing XML schema like data descriptions and constraints. Therefore, it is interesting to investigate conceptual and schema formalisms as a means of providing higher level semantics in the context of XML-related data engineering. In this paper, we present a visual constraint specification model for an XML layered view model. First we briefly outline the view model and then provide a detailed discussion on modeling issues related to view constraint specification using two OO modeling languages, namely OMG's UML/OCL and XML Semantics (XSemantic) nets. To demonstrate our concepts, we also provide an illustrative case study example based on a real-world application.