Abstract
Due to a widely use of XML language in various application domains, a well-established mechanism for the definition and enforcement of security controls on specific accesses to XML documents is demanded, in order to ensure that only authorized entities can perform certain actions on the protected data. The proposed rule-based, declarative approach supports definition of (possibly implicit and complex) authorization rules on particular nodes within a document as well as enforcement of multiple user-defined policies, specifying selected mechanisms to resolve conflicts or to apply default authorization. Moreover, by founded on both RDF and XDD theory, the developed approach yields a simple yet flexible and interchangeable XML access control model with well-defined declarative semantics.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Akama, K., Shimitsu, T., Miyamoto, E.: Solving Problems by Equivalent Transformation of Declarative Programs. Journal of the Japanese Society of Artificial Intelligence 13(6), 944–952 (1998) (in Japanese)
Anutariya, C., Wuwongse, V., Wattanapailin, V.: An Equivalent-Transformation- Based XML Rule Language. In: Proc. Int’l Workshop Rule Markup Languages for Business Rules in the Semantic Web, Sardinia, Italy (2002)
Bertino, E., Castano, S., Ferrari, S., Mesiti, M.: Specifying and Enforcing Access Control Policies for XML Document Sources. In: World Wide Web, vol. 3(3). Baltzer Science Publishers, Netherlands (2000)
Bertino, E., Castano, S., Ferrari, E.: On specifying security policies for web documents with an XML-based language. In: Proc. 6th ACM Symposium on Access control models and technologies, pp. 57–65. ACM Press, New York (2001)
Brickley, D., Guha, R.V.: RDF Vocabulary Description Language 1.0: RDF Schema. W3C Working Draft (January 2003), http://www.w3.org/TR/rdf-schema/
Damiani, E., Vimercati, S., Paraboschi, S., Samarati, P.: A Fine-Grained Access Control System for XML Documents. ACM Transaction on Information and System Security 5(2), 169–202 (2002)
Godik, S., Moses, T.: XACML 1.0, OASIS Standard (Febraury 18, 2003), http://www.oasis-open.org/committees/download.php/2406/oasis-xacml-1.0.pdf
Herzberg, A., Mass, Y.: Relying Party Credentials Framework. In: Proc. RSA Conference, San Francisco, CA (April 2001)
Herzberg, A., Mass, Y., Mihaeli, J.: Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers. In: Proc. IEEE Symposium Security and Privacy, CA (2000)
Jajodia, S., Samarati, P., Subrahmanian, V.S., Bertino, E.: A unified framework for enforcing multiple access control policies. In: Proc. 1997 ACM SIGMOD: Int’l Conf. Management of data, Arizona, pp. 474–485 (1997)
Kudo, M., Hada, S.: XML Document Security based on Provisional Authorization. In: Proc. 7th ACM Conf. Computer and Communications Security, Greece, pp. 87–96 (2000)
Lassila, O. and Swick, R.R.: Resource Description Framework (RDF) Model and Syntax Specification. W3C Recommendation (Febraury 1999), http://www.w3.org/TR/REC-rdf-syntax/
OASIS XACML Technical Committee, http://www.oasis-open.org/committees/xacml/
Wuwongse, W., Akama, K., Anutariya, C., Nantajeewarawat, E.: A Data Model for XML Databases. J. Intelligent Information Systems 20(1), 63–80 (2003)
Wuwongse, W., Anutariya, C., Akama, K., Nantajeewarawat, E.: XML Declarative Description (XDD): A Language for the Semantic Web. IEEE Intelligent Systems 16(3), 54–65 (2001)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Anutariya, C., Chatvichienchai, S., Iwiahara, M., Wuwongse, V., Kambayashi, Y. (2003). A Rule-Based XML Access Control Model. In: Schröder, M., Wagner, G. (eds) Rules and Rule Markup Languages for the Semantic Web. RuleML 2003. Lecture Notes in Computer Science, vol 2876. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-39715-1_3
Download citation
DOI: https://doi.org/10.1007/978-3-540-39715-1_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-20361-2
Online ISBN: 978-3-540-39715-1
eBook Packages: Springer Book Archive