Tree Automata for Schema-level Filtering of XML Associations

Vaibhav Gowadia, Csilla Farkas

Abstract

In this paper we present query filtering techniques based on bottom-up tree automata for XML access control. In our authorization model (RXACL), RDF statements are used to represent security objects and to express the security policy. Our model allows to express and enforce access control on XML trees and their associations. We propose a query-filtering technique that evaluate XML queries to detect disclosure of association-level security objects. A query Q discloses a security object o iff the (tree) automata corresponding to o accepts Q. We show that our schema-level method detects all possible disclosures, i.e., it is complete.

References

  1. Bertino, E., Castano, S., Ferrari, E.: Securing XML Documents with Author-X. IEEE Internet Computing 3 (2001)
  2. Bertino, E., Castano, S., Ferrari, E., M.Mesiti: Specifying and Enforcing Access Control Policies for XML Document Sources. In: World Wide Web Journal. Volume 3. Baltzer Science Publishers (2000)
  3. Damiani, E., di Vimercati, S.D.C., Paraboschi, S., Samarati, P.: XML Access Control Systems: A Component-Based Approach. In: IFIP WG11.3 Working Conference on Database Security, The Netherlands (2000)
  4. Kudo, M., Hada, S.: XML Document Security based on Provisional Authorizations. In: Proc. of the 7th ACM conference on Computer and Communications Security, Athens, Greece (2000)
  5. Murata, M., Tozawa, A., Kudo, M., Hada, S.: XML Access Control using Static Analysis. In: CCS 7803: Proceedings of the 10th ACM conference on Computer and communications security, ACM Press (2003) 73-84
  6. Luo, B., Lee, D., Lee, W.C., Liu, P.: QFilter: Fine-Grained Run-Time XML Access Control via NFA-based Query Rewriting. In: Proc. of ACM Conference on Information and Knowledge Management (CIKM). (2004)
  7. Gowadia, V., Farkas, C.: RDF metadata for XML Access Control. In: Proceedings of the 2003 ACM workshop on XML security, ACM Press (2003) 39-48
  8. W3C Recommendation: XML Path Language (XPath) Version 1.0. (1999)
  9. Bray, T., Paoli, J., Sperberg-McQueen, C.M.: Extensible Markup Language Language 1.0 specification. W3C Recommendation. (2000)
  10. Thompson, H.S., Beech, D., Maloney, M., Mendelsohn, N.: XML Schema Part 1: Structures. Technical report, W3C Consortium (2001)
  11. Murata, M., Lee, D., Mani, M., Kawaguchi, K.: Taxonomy of XML Schema Languages using Formal Language Theory. ACM Trans. on Internet Technology (2005)
  12. Fernández, M., Malhotra, A., Marsh, J., Nagy, M., Walsh, N.: XQuery 1.0 and XPath 2.0 Data Model. Technical report, W3C (2003) W3C Working Draft 12 November 2003.
  13. Chidlovskii, B.: Using Regular Tree Automata as XML Schemas. In: ADL 7800: Proceedings of the IEEE Advances in Digital Libraries 2000, IEEE Computer Society (2000) 89
  14. Neven, F.: Automata theory for XML researchers. SIGMOD Rec. 31 (2002) 39-46
Download


Paper Citation


in Harvard Style

Gowadia V. and Farkas C. (2005). Tree Automata for Schema-level Filtering of XML Associations . In Proceedings of the 3rd International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2005) ISBN 972-8865-25-2, pages 136-145. DOI: 10.5220/0002575401360145


in Bibtex Style

@conference{wosis05,
author={Vaibhav Gowadia and Csilla Farkas},
title={Tree Automata for Schema-level Filtering of XML Associations},
booktitle={Proceedings of the 3rd International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2005)},
year={2005},
pages={136-145},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002575401360145},
isbn={972-8865-25-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2005)
TI - Tree Automata for Schema-level Filtering of XML Associations
SN - 972-8865-25-2
AU - Gowadia V.
AU - Farkas C.
PY - 2005
SP - 136
EP - 145
DO - 10.5220/0002575401360145