SUCCINCT ACCESS CONTROL POLICIES FOR PUBLISHED XML DATASETS

Tomasz Müldner; Jan Krzysztof Miziołek; Gregory Leighton

doi:10.5220/0001726103800385

SUCCINCT ACCESS CONTROL POLICIES FOR PUBLISHED XML DATASETS

Tomasz Müldner, Jan Krzysztof Miziołek, Gregory Leighton

2008

Abstract

We consider the setting of secure publishing of XML documents, in which read-only access control policies (ACPs) over static XML datasets are enforced using cryptographic keys. The role-based access control (RBAC) model provides a flexible method for specifying such policies. Extending the RBAC model to include role parameterization addresses the problem of role proliferation which can occur in large scale systems. In this paper, we describe the complete design of a parameterized RBAC (PRBAC) model for XML documents. We also describe algorithms for generating the minimum number of keys required to enforce an arbitrary PRBAC policy; for distributing to each user only keys needed for decrypting accessible nodes; and for applying the minimal number of encryption operations to an XML document required to satisfy the protection requirements of the policy. The time complexity of our approach is linear w.r.t. document size and the number of roles.

Download

Paper Citation

in Harvard Style

Müldner T., Krzysztof Miziołek J. and Leighton G. (2008). SUCCINCT ACCESS CONTROL POLICIES FOR PUBLISHED XML DATASETS . In Proceedings of the Tenth International Conference on Enterprise Information Systems - Volume 1: ICEIS, ISBN 978-989-8111-36-4, pages 380-385. DOI: 10.5220/0001726103800385

in Bibtex Style

@conference{iceis08,
author={Tomasz Müldner and Jan Krzysztof Miziołek and Gregory Leighton},
title={SUCCINCT ACCESS CONTROL POLICIES FOR PUBLISHED XML DATASETS},
booktitle={Proceedings of the Tenth International Conference on Enterprise Information Systems - Volume 1: ICEIS,},
year={2008},
pages={380-385},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001726103800385},
isbn={978-989-8111-36-4},
}

in EndNote Style

TY - CONF
JO - Proceedings of the Tenth International Conference on Enterprise Information Systems - Volume 1: ICEIS,
TI - SUCCINCT ACCESS CONTROL POLICIES FOR PUBLISHED XML DATASETS
SN - 978-989-8111-36-4
AU - Müldner T.
AU - Krzysztof Miziołek J.
AU - Leighton G.
PY - 2008
SP - 380
EP - 385
DO - 10.5220/0001726103800385