Browse > Article

Dynamic Predicate: An Efficient Access Control Mechanism for Hippocratic XML Databases  

Lee Jae-Gil (한국과학기술원 전산학과/첨단정보기술연구센터)
Han Wook-Shin (경북대학교 컴퓨터공학과)
Whang Kyu-Young (한국과학기술원 전산학과/첨단정보기술연구센터)
Publication Information
Journal of KIISE:Databases / v.32, no.5, 2005 , pp. 473-486 More about this Journal
Abstract
The Hippocratic database model recently proposed by Agrawal et at. incorporates privacy protection capabilities into relational databases. The authors have subsequenty proposed the Hippocratic XML daかabase model[4], an extension of the Hippocratic database model for XML databases. In this paper, we propose a new concept that we cail the dynamic predicate(DP) for effective access control in the Hippocratic XML database model. A DP is a novel concept that represents a dynamically constructed rendition that tan be adapted for determining the accessibility of elements during query execution. DPs allow us to effectively integrate authorization checking into the query plan so that unauthorized elements are excluded in the process of query execution. Using synthetic and real data, we have performed extensive experiments comparing query processing time with those of existing access control mechanisms. The results show that the proposed access control mechanism improves the wall clock time by up to 219 times over the top-down access control strategy and by up to 499 times over the bottom-up access control strategy. The major contribution of our, paper is enabling effective integration of access control mechanisms with the query plan using the DP under the Hippocratic XML database model.
Keywords
Security; Privacy; Access control mechanism; XML database; Hippocratic database;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 Information and Privacy Commissioner of Ontario, 'Intelligent Software Agents: Turning a Privacy Threat into a Privacy Protector,' Apr. 1999
2 Information and Privacy Commissioner of Ontario, 'An Internet Privacy Primer: Assume Nothing,' Aug. 2001
3 Aref, W. G. and Ilyas, I. F., 'SP-GiST: An Extensible Database Index for Supporting Space Partitioning Trees,' Journal of Intelligent Information Systems, Vol. 17, No. 2-3, pp. 215-240, Dec. 2001   DOI   ScienceOn
4 Rabitti, F., Bertino, E., Kim, W., and Woelk, D., 'A Model of Authorization for Next-Generation Database Systems,' ACM Trans. on Database Systems, Vol. 16, No.1, pp. 88-131, Mar. 1991   DOI
5 Bruno, N., Koudas, N., and Srivastava, D., 'Holistic Twig Joins: Optimal XML Pattern Matching,' In Proc. 2002 ACM SIGMOD Int'l Conf. on Management of Data, ACM SIGMOD, Madison, Wisconsin, pp. 310-321, June 2002   DOI
6 Whang, K.-Y. and Krishnarnurthy, R., 'The Multilevel Grid File - A Dynamic Hierarchical Multidimensional File Structure,' In Proc. Int'l Conf. on Database Systems for Advanced Applications, Tokyo, Japan, pp. 449-459, Apr. 1991
7 Marcus, M. P., Marcinkiewicz, M. A., and Santorini, B., 'Building a Large Annotated Corpus of English: The Penn Treebank,' Computational Linguistics, Vol. 19, No. 2, pp. 313-330, June 1993
8 Whang, K.-Y. and Krishnamurthy, R., Multilevel Grid Files, IBM Research Report RC11516, IBM Thomas J. Watson Research Center, Yorktown Heights, New York, Nov. 1985
9 Schmidt, A. R., Waas, F., Kersten, M. L., Carey, M. J., Manolescu, I., and Busse, R., 'XMark: A Benchmark for XML Data Management,' In Proc. 28th Int'l Conf. on Very Large Data Bases, Hong Kong, China, pp. 974-985, Aug. 2002
10 Amagasa, T., Yoshikawa, M., and Uemura, S., 'QRS: A Robust Numbering Scheme for XML Documents,' In Proc. 19th Int'l Conf. on Data Engineering, Bangalore, India, pp. 705-707, Mar. 2003
11 Chien, S.-Y., Vagena, Z., Zhang, D., Tsotras, V. J., and Zaniolo, C., 'Efficient Structural Joins on Indexed XML Documents,' In Proc. 28th Int'l Conf. on Very Large Data Bases, Hong Kong, China, pp. 263-274, Aug. 2002
12 Graefe, G., 'Query Evaluation Techniques for Large Databases,' ACM Computing Surveys, Vol. 25, No. 2, pp. 73-170, June 1993   DOI   ScienceOn
13 Wu, Y., Patel, J. M., and Jagadish, H. V., 'Structural Join Order Selection for XML Query Optimization,' In Proc. 19th Int'l Conf. on Data Engineering, Bangalore, India, pp. 443-454, Mar. 2003
14 Al-Khalifa, S., Jagadish, H. V., Koudas, N., Patel, J. M., Srivastava, D., and Wu, Y., 'Structural Joins: A Primitive for Efficient XML Query Pattern Matching,' In Proc. 18th Int'l Conf. on Data Engineering, San Jose, California, pp. 141-152, Feb. 2002   DOI
15 V. Gaede, O. Gunther, 'Multidimensional Access Methods,' ACM Computing Surveys, 30(2), pp.170-231, 1998   DOI   ScienceOn
16 Li, Q. and Moon, B., 'Indexing and Querying XML Data for Regular Path Expressions,' In Proc. 27th Int'l Conf. on Very Large Data Bases, Rome, Italy, pp. 361-370, Sept. 2001
17 Berglund, A., Boag, S., Chamberlin, D., Fernandez, M. F., Kay, M., Robie, J., and Simeon, J., XML Path Language (XPath) Version 2.0, W3C Working Draft, Nov. 2003
18 Yu, T., Srivastava, D., Lakshmanan, V. S., and Jagadish, H. V., 'Compressed Accessibility Map: Efficient Access Control for XML,' In Proc. 28th Int'l Conf. on Very Large Data Bases, Hong Kong, China, pp. 478-489, Aug. 2002
19 Cho, S., Arner-Yahia, S., Lakshmanan, V. S., and Srivastava, D., 'Optimizing the Secure Evaluation of Twig Queries,' In Proc. 28th Int'l Conf. on Very Large Data Bases, Hong Kong, China, pp. 490-501, Aug. 2002
20 Damiani, E., De Capitani di Virnercati, S., Paraboschi, S., and Samarati, P., 'A Fine-Grained Access Control System for XML Documents,' ACM Trans. on Information and System Security, Vol. 5, No. 2, pp. 169-202, May 2002   DOI
21 Agrawal, R., Kiernan, J., Srikant, R., and Xu, Y., 'Hippocratic Databases,' In Proc. 28th Int'l Conf. on Very Large Data Bases, Hong Kong, China, pp. 143-154, Aug. 2002
22 Bertino, E., Castano, S., Ferrari, E., and Mesiti, M., 'Specifying and Enforcing Access Control Policies for XML Document Sources,' World Wide Web Journal, Vol. 3, No. 3, pp. 139-151, 2000   DOI
23 N. Roussopoulos, S. Kelley, and F. Vincent. Nearest Neighbor Queries. In Proceedings of the ACM SIGMOD Conference, May, 1995   DOI
24 이재길, 한욱신, 황규영, '히포크라테스 XML 데이타베이스: 모델 및 액세스 통제 방법', 정보과학회논문지:데이타베이스, 제31권, 제6호, pp. 684-698, 2004년 12월   과학기술학회마을