Fansheng Kong

2005-01-01

Abstract:This paper describes a model of accessing object-relational data in object-relational database based on XML document,which has so many advantages such as opening,extending and replicating and can be used in exchanging and sharing data between heterogeneous systems.In the last,the paper gives an instance implementing the model in Oracle 9i and.NET(development) environment.

Tao Peng,Jiang Minghua,Hu Ming

2008-01-01

Abstract:Nowaday, the status of XML as a standard for storing and exchanging data in Internet and XML documents is becoming a de facto standard for storing and exchanging information. So, access control of XML documents is a key in network environment. In this paper, we propose an approach that exploits the semantics associated with subject and information in XML documents to facilitate automatic access control policies while resource sharing occurs among coalition members. Our approach relies on identifying the necessary attributes required by users to gain access to specific XML documents information. Specifically, it consists of extracting user attribute sets that semantically mach with the attributes of the information in XML documents. This relies on a closer examination of why a user is assigned a specific role.

Dong-Zhan Zhang,Yong-Sheng Xue

DOI: https://doi.org/10.1007/11596370_37

2005-01-01

Abstract:More and more information is distributed in XML format. Information stored in XML documents should be protected by access control policy. An extended MAC model for XML is presented. The subject and object are discussed at first. The labeled XML document model, which includes three rules and one algorithm, is presented allowing for definition and enforcement of access restrictions directly on the structure and content of XML documents. The extended MAC model for XML documents is described in detail by discussing four operations on XML documents. The architecture and some mechanisms used to implement the model are discussed at last.

HONG Fan,FENG Xue-bin,HUANG Zhi,ZHENG Ming-hui,洪帆,冯学斌,黄志,郑明辉

2008-01-01

Abstract:XML's increasing popularity highlights the security demand for XML documents.A mandatory access control model for XML document is presented on the basis of investigation of the function dependency of XML documents and discussion of the integrity properties of multilevel XML document.Then,the algorithms for decomposition/recovery multilevel XML document into/from single level document are given,and the manipulation rules for typical operations of XQuery and XUpdate:QUERY,INSERT,UPDATE,and REMOVE,are elaborated.The multilevel XML document access model can meet the requirement of sensitive information processing application.

Wei Sun,Da-xin Liu,Tong Wang

DOI: https://doi.org/10.1007/11610496_109

2006-01-01

Abstract:XML becomes a standard format for data interchanges on Internet, especially in E-commerce. Although XML technology has been widely used, the research and development on XML security is still at the early stage. The control of XML access is important for protecting XML documents from being illegally modified or accessed. Most of available models utilize a single level check point. In this paper, we proposed an access control model with dual level access control: file-level and element-level (or attribute-level). The model allows adopt the XBLP policy with file-level security, while employs Hide-Node View for element-level security. The architecture framework of the access control model and implementation are briefly described.

Wei Sun,Da-xin Liu,Tong Wang

DOI: https://doi.org/10.1007/11599517_64

2005-01-01

Abstract:As large corporations and organizations increasingly exploit the Internet as a means of improving business-transaction efficiency and productivity, it is increasingly common to find operational data and other business information in XML format. Access control for XML database is non-trivial subjects. A number of recent research efforts have considered access control models for XML data[1−5]. Our first contribution is a novel model for specifying XML security access control. Given an XML document accompanied by a document DTD, we allow a two-stage access control policies to pledge to security access XML document at file-level and element-level respectively. On the element-level access control, our approach for these access control policies is based on the novel notion of hide-node views. While the hide-node view DTD is exposed to authorized users, neither the internal XPath annotations nor the full document DTD is visible. Authorized users can only operate data over the hide-node view, making use of the exposed view DTD to access data. Our hide-node view mechanism guarantees that unauthorized user cannot access sensitive data and protects the schema information from access by unauthorized users. We think that the schema information also is sensitive data and should be protected from gain through the data accessing.

Huanming Zhang,Quanlong Guan,Weiqi Luo

DOI: https://doi.org/10.14257/ijsia.2015.9.7.16

2015-01-01

Abstract:XML, the Extensible Markup Language, had become an important tool for both storage and exchange of data.As the applied areas of XML had been widen gradually, the security problems of XML became a main concern.Hence, the study of access control using XML had been an important topic of security study of XML nowadays.In this paper, we would first made a brief introduction of access control using XML, and some requirements of XML access control would be included.After that, we would give a detail presentation of an access control model using XML, and point out the most significant feature of it.Finally, we analyzed the direction and difficulty in the study of access control using XML, and then illustrate the practical significance of the study.

Tao Peng,Minghua Jiang,Ming Hu

DOI: https://doi.org/10.1109/ISDPE.2007.30

2007-01-01

Abstract:Given the status of XML as a standard for storing and exchanging data in Internet and the Growing interest in XML security, various access control schemes have been proposed recently. In this paper, we propose a novel approach to realize the access control. In this approach, we realize the function of access control by several classes, which construct an object with some parameter when a user accesses a XML document with his (or her) authorization. The class can be inherited just like the programming. We demonstrate the model and show the result of our approach. Keyword: Object oriented, XML, Fine-Granularity, Access Control

冯学斌,洪帆,汤学明,崔永泉

2009-01-01

Abstract:XML's increasing popularity highlights the security need for XML documents.Researchers have paid more attention on discretional access control,role-based access control and view based technology,rather than mandatory access control.A improved mandatory access control model for XML is presented in the paper.The integrity properties for multilevel XML document are proposed in the paper.A novel approach delayed-removing is introduced in order to avoid covert channel.In the paper,the manipulation rules for typical operation of XQuery and XUpdate are created,and the security of the model is discussed.

Huanming Zhang,Quanlong Guan,Weiqi Luo

DOI: https://doi.org/10.14257/astl.2015.111.15

2015-01-01

Abstract:XML, the Extensible Markup Language, had become an important tool for both storage and exchange of data. In this paper, we would first made a brief introduction of access control using XML, and some requirements of XML access control would be included. Finally, we analyzed the direction and difficulty in the study of access control using XML, and then illustrate the practical significance of the study.

CHEN Chuan-bo,PENG Chao-yi

DOI: https://doi.org/10.3969/j.issn.1007-130x.2008.01.011

2008-01-01

Abstract:Since XML is widely used nowadays,the need to provide controlled access to such information is imminent.The incredible amount of heterogeneous users on the Web also increases the difficulty of the authorization management.Based on the security feature of XML documents,we presents a credential-based XML access control model and its XML-based policy specification.Finally,we discuss the implementation of the model.

Li Lan,Dan Feng

2004-01-01

Journal of Software

Abstract:Information stored in XML documents should be protected by access control policy. Current access control models for XML documents are all based on DAC (discretionary access control) or RBAC (role-based access control). High security system uses MAC (mandatory access control) to secure information in system. XML document model is extended to include label information in this paper, and some rules that the extended model has to satisfy with are presented. Fine-grained MAC model for XML documents is described in detail by discussing four operations on XML documents. The fine-grained MAC model is based on XML schema, and its finest granularity of access control is element or attribute. The architecture and some mechanisms used to implement the fine-grained MAC model are discussed too.

MENGXiao-feng,LUODao-feng,OUJian-bo

2004-01-01

Abstract:As XML has been increasingly important as the Data-change format of Internet and Intranet, acces-controlon-XML-properties rises as a new issue. Role-based access control (RBAC) is an access control method that has been widely used in Internet, Operation System and Relation Data Base these 10 years. Though RBAC is already relatively mature in the above fields, new problems occur when it is used in XML properties. This paper proposes an integrated model to resolve these problems, after the fully analysis on the features of XML and RBAC.

DeQiang Wang,Feng Xu,Bing Mao,Li Xie

2004-01-01

Abstract:Proposed in this paper is a new algorithm of access control labeling on an XML document based on the authorization-tree. The algorithm improves the performance effectively through avoiding matching authorizations, solving the authorization conflict and labeling at every node of the XML-tree. Meanwhile, a flexible and user-configurable mode of solving the authorization conflict is proposed. And the mode is integrated into the authorization-tree algorithm seamlessly.

FENG Xue-Bin,HONG Fan

DOI: https://doi.org/10.3969/j.issn.1002-137X.2007.10.039

2007-01-01

Computer Science

Abstract:XML database are playing increasingly important role in Web applications.Researchers of XML database se- curity have paid more attention on discretional access control and role-based access control,rather than mandatory ac- cess control which are required by the top security applications.A mandatory access control model for XML database which supports polyinstantiation by using resolving and composing algorithm in syntax level is proposed in paper.The architecture and the security are also discussed in the paper.

Meng Xiao-feng,Luo Dao-feng,Ou Jian-bo

DOI: https://doi.org/10.1007/BF02831673

2004-01-01

Wuhan University Journal of Natural Sciences

Abstract:As XML has been increasingly important as the Data-change format of Internet and Intranet, access-control-on-XML-properties rises as a new issue. Role-based access control (RBAC) is an access control method that has been widely used in Internet, Operation System and Relation Data Base these 10 years. Though RBAC is already relatively mature in the above fields, new problems occur when it is used in XML properties. This paper proposes an integrated model to resolve these problems, after the fully analysis on the features of XML and RBAC.

Zhang Dongzhan,Guo Youxian,Wu Yashuang

2008-01-01

Abstract:Extensible markup language (XML) is a promising standard for describing structured information and contents on the Internet. Information stored in XML documents should be protected by access control policy. High security system uses mandatory access control to secure information in system. A XML Oriented Mandatory Access Control Based on Hierarchy Security Labels is presented, which is focused on enforcing and resolving fine grained authorizations with respect to the XML data model and semantics. The XML documents are labeled by three rules and one algorithm, allowing for definition and enforcement of access restrictions directly on the structure and content of XML documents. The fine-grained access control model is described in detail by discussing four operations on XML documents. The architecture and some mechanisms used to implement the model are discussed at last. The result is a flexible and powerful security system offering a simple integration with current solutions.

Lei Feng

2008-01-01

Abstract:XML document may include information of different sensitivity levels.To prevent XML document from non-authorization querying and modifying,a control mechanism need to be developed to define access to some parts of XML document.Based on RBAC model,multi-grained authorized mechanism for XML document defined by XML schema is discussed,XML access control architecture on RBAC is described,and a non-recursion algorithm of XML access control is presented.

徐晓春,陆松年,杨树堂,蒋兴浩

DOI: https://doi.org/10.3969/j.issn.1000-3428.2004.05.028

2004-01-01

Abstract:One of the most important features of XML Web services is that they can easily accessed over the Internet. But the downside of this easiness is that security is compromised. This paper presents an access control system for Web Services. It uses XACML for the description of access control criteria based on the use of attribute certificate. The system takes full advantage of XML-enabled feature of Web Services and XACML access control decision model. Furthermore, the integration of privilege management infrastructure and XACML makes this system suitable for heterogeneous Web services.

Xiaoxia Liu

2009-01-01

Abstract:To solve the problem focuments of repetitive labeling process and Document Type Definition(DTD) verification process executed by the eXtensible Markup Language(XML) access control system for update operators,action type is defined. Using these action types,user queries are distinguished semantically and unnecessary queries are filtered out at the early stage,so memory and other system resources used in Document Object Model(DOM) -based DTD verification process and labeling process can be saved. The proposed access control technique shows better performance in an environment where update queries occur frequently after compared with existing one.