Abstract:XML has been becoming popular for data store, document representation and exchange over the Web. Security mechanisms for the protection of XML document sources and their distribution are essential. Author-X is a Java based system specifically conceived for the protection of XML documents. It supports a range of protection granularity levels and subject credentials, but also supports push distribution for documents broadcast. However, the proposed system has certain disadvantages in terms of both security and dynamic key management. For example, a sender has to distribute the secret keys to all correspondent users for different XML documents. Also, if one of the users leave or a credential is changed, then the sender has to re-encrypt all related documents and redistribute the secret keys to all correspondent users. In this paper, we present a scheme for securing XML documents and their distribution. Our scheme has several advantages over Author-X such as: (a) one user needs only one private key; (b) even when the user leaves or a credential is changed, all the other users will be unaffected; (c) there is no need to establish a secure channel for key distribution; and (d) there is no need for checking the XML documents for access control policies applied. These make the security model more efficient and robust as well as simplifying the programming and the generation of the encrypted document base.

Securing Xml Document Sources and Their Distribution

Secure Distribution and Access of XML Documents

Electronic Documents Exchange System Based on XML Security Technology

Preventing Information Leakage In Secure Multiple Xml Documents Publishing

A Research on XML and XML-Related Security

An Efficient Key Management Scheme for Segment-Based Document Protection

Two-Stage access control model for XML security

Research on Secure Data Exchange Model Based on XML

A model of XML access control with dual-level security views

An Electronic Official Document System Design Based on XML Security

DESIGN OF A SECURE FRAMEWORK TO SECURELY EXCHANGE(XML-BASED)DOCUMENTS OVER THE INTERNET

The Key Management of the Encrypted Database Based on XML

Methods on XML Authorization and Access Control

Xml-Based Revocation and Delegation in A Distributed Environment

XBSIA:A Kind of XML-Based Security Integrated Architecture

Research of data access control based on partial encryption

Construct a Secure Client Relationship Management System with XML

Trusted Exam Marks System at IUG Using XML-Signature

A Model for Dynamic Access Control of XML Documents Using Semantics

Fine-grained Security Model of Multi-agent Communication with XML Specifications

The Safe Data Exchange Based on XML Encryption Through Different plat