Browse > Article

Efficient Access Control Labeling for Secure Query Processing on Dynamic XML Data Streams  

An, Dong-Chan (서강대학교 컴퓨터공학과)
Park, Seog (서강대학교 컴퓨터공학과)
Publication Information
Journal of KIISE:Databases / v.36, no.3, 2009 , pp. 180-188 More about this Journal
Abstract
Recently, the needs for an efficient and secure access control method of dynamic XML data in a ubiquitous data streams environment have become an active research area. In this paper, we proposed an improved role-based prime number labeling scheme for an efficient and secure access control labeling method in dynamic XML data streams. And we point out the limitations of existing access control and labeling schemes for XML data assuming that documents are frequently updated. The improved labeling method where labels are encoded ancestor-descendant and sibling relationships between nodes but need not to be regenerated when the document is updated. Our improved role-based prime number labeling scheme supports an infinite number of updates and guarantees the arbitrary nodes insertion at arbitrary position of the XML tree without label collisions. Also we implemented an efficient access control using a role-based prime number labeling. Finally, we have shown that our approach is an efficient and secure through experiments.
Keywords
Dynamic XML Data; Access Control; Query Processing; Data Streams; Role-based Prime Number Labeling;
Citations & Related Records
연도 인용수 순위
  • Reference
1 S. Berglund, D. Boag, M.F. Chamberlin, et al, 'XML path language (XPath) 2.0,' W3C working draft 16. Technical Report WD-xpath20-20020816, World Wide Web Consortium, 2002
2 B. Babcock, S. Babu, M. Datar, R. Motwani, and J. Widom, 'Models and Issues in Data Stream Systems,' In PODS(Symposium on Principles of Database Systems), 2002   DOI
3 E. Bertino and E. Ferrari, Secure and Selective 'Dissemination of XML Documents,' In TISSEC (ACM Transactions on Information and System Security), Vol.5, No.3, 2002   DOI
4 E. Damiani, S. Vimercati, et. al. 'Securing XML Document,' In EDBT(International Conference on Extending Database Technology), 2000   DOI   ScienceOn
5 S. Bose, L. Fegaras, 'XFrag: A Query Processing Framework for Fragmented XML Data,' In Web and Databases, 2005
6 M. Murata, A. Tozawa, and M. Kudo, 'XML Access Control Using Static Analysis,' In CCS (CAM Conference on Computer and Communications Security), 2003   DOI
7 X. Wu, M. Li, L. Hsu, 'A Prime Number Labeling Scheme for Dynamic Ordered XML Trees,' In ICDE(IEEE International Conference on Data Engineering), 2004
8 B. Carminati, E. Ferrari, K. L. Tan, Specifying Access Control Policies on Data Streams Outsourced Data, In DASFAA(Database Systems for Advanced Applications), 2006
9 E. Bertino, S. Castano, E. Ferrari, and M. Mesiti, 'Specifying and Enforcing Access Control Policies for XML Document Sources,' In WWW Journal, 2000   DOI
10 http://www.w3.org/TR/xml-fragment
11 J. Lu, T. Wang Ling, 'Labeling and Querying Dynamic XML Trees,' In APWeb(Asia-Pacific Web Conference), 2004
12 P.E. O'Neil, E.J. O'Neil, S. Pal, I. Cseri, et a1. 'ORDPATHs: Insert-Friendly XML Node Labels,' In SIGMOD(ACM International Conference on Management of Data), 2004   DOI
13 J. Xu, Z. Li, Y. Wang, R. Yao, 'An Efficient Encoding and Labeling Scheme for Dynamic XML. Data,' In DEXA(International Conference on Database and Expert Systems Applications), 2007   DOI   ScienceOn
14 H. Huo, G. Wang, X. Hui, R. Z. BoNing, and C. Xiao, 'Efficient Query Processing for Streamed XML Fragments,' In DASFAA(Database Systems for Advanced Applications), 2006   DOI   ScienceOn
15 S. Boag, D. Chamberlin, M. F. Fernandez, D. Florescu, J. Robie, and J Simon, 'XQuery 1.0: An XML Query Language,' W3C Working Draft 16. Technical Report WD-xquery-20020816, World Wide Web Consortium, 2002
16 C. Li, T.W. Ling, 'QED: A Novel Quaternary Encoding to Completely Avoid Re-labeling in XML Updates,' In CIKM(ACM Conference on Information and Knowledge Management), 2005   DOI
17 C. Li, T. W. Ling, M. Hu, 'Efficient Processing of Updates in Dynamic XML Data,' In ICDE(IEEE International Conference on Data Engineering), 2006   DOI
18 B. Luo, D. W. Lee, W. C. Lee, and P. Liu, 'Qfilter: Fine-grained Run-Time XML Access Control via NFA-based Query Rewriting,' In CIKM(ACM Conference on Information and Knowledge Management), 2004   DOI
19 W. Fan, I. Fundulaki, F. Geerts, X. Jia, A. Kementsietsidis, 'A View Based Security Framework for XML,' In AHM(All Hands Meeting Home), 2006
20 E. Damiani, S. Vimercati, et. al., 'Access Control System for XML. Documents,' In TISSEC(ACM Transactions on Information and System Security), Vo1.5, No.2, 2002   DOI
21 A. Schmidt, F. Waas, M. Kersten, M. J. Carey, I. Manolescu, R. Busse, 'XMark: A Benchmark for XML Data Management,' In VLDB(Very Large Data Base), 2002