Abstract
This paper presents an ontology-driven secure XML content distribution scheme. This scheme first relies on a semantic access control model for XML documents that achieves three objectives: (1) representing flexible and evolvable policies, (2) providing a high-level mapping and interoperable interface to documents, and (3) automating the granting of fine-grained access rights by inferring on content semantics. A novel XML document parsing mechanism is defined to delegate document access control enforcement to a third party without leaking the document XML schema to it. The Encrypted Breadth First Order Labels (EBOL) encoding is used to bind semantic concepts with XML document nodes and to check the integrity of a document.
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Joseki - A SPARQL Server for Jena, http://www.joseki.org/
OWL Web Ontology Language Overview, http://www.w3.org/tr/owl-features/
Resource Description Framework (RDF), http://www.w3.org/rdf/
SPARQL Query Language for RDF, http://www.w3.org/tr/rdf-sparql-query/
Agrawal, R., Kiernan, J., Srikant, R., Xu, Y.: Order preserving encryption for numeric data. In: SIGMOD 2004: Proceedings of the 2004 ACM SIGMOD international conference on Management of data, pp. 563–574. ACM, New York (2004)
Lee, W.-C., Luo, B., Lee, D., Liu, P.: A flexible framework for architecting XML access control enforcement mechanisms. In: Jonker, W., Petković, M. (eds.) SDM 2004. LNCS, vol. 3178, pp. 133–147. Springer, Heidelberg (2004)
Damiani, E., di Vimercati, S.D.C., Paraboschi, S., Samarati, P.: Fine Grained Access Control for Soap E-services. In: WWW 2001: Proceedings of the 10th international conference on World Wide Web, pp. 504–513. ACM, New York (2001)
Damiani, E., di Vimercati, S.D.C., Paraboschi, S., Samarati, P.: A Fine-grained Access Control System for XML Documents. ACM Trans. Inf. Syst. Secur. 5(2), 169–202 (2002)
Fan, W., Chan, C.-Y., Garofalakis, M.: Secure XML Querying With Security Views. In: SIGMOD 2004: Proceedings of the 2004 ACM SIGMOD international conference on Management of data, pp. 587–598. ACM Press, New York (2004)
Finin, T., Joshi, A., Kagal, L., Niu, J., Sandhu, R., Winsborough, W., Thuraisingham, B.: Rowlbac: Representing Role Based Access Control in OWL. In: Proceedings of the 13th ACM Symposium on Access Control Models and Technologies (SACMAT 2008), Estes Park, CO, USA, pp. 73–82. ACM, New York (2008)
Godik, S., Moses, T.: eXtensible Access Control Markup Language (XACML), version 1.0, OASIS Standard (2003)
Jain, A., Wijesekera, D., Singhal, A., Thuraisingham, B.: Semantic-Aware Data Protection in Web Services. In: Proceedings of IEEE Workshop on Web Services Security held in Berkeley, CA (May 2006)
Kagal, L., Paolucci, M., Srinivasan, N., Denker, G., Finin, T., Sycara, K.: Authorization and privacy for semantic web services. IEEE Intelligent Systems 19(4), 50–56 (2004)
Kundu, A., Bertino, E.: A new model for secure dissemination of xml content. IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews 38(3), 292–301 (2008)
Kundu, A., Elisa, B.: Secure Dissemination of XML Content Using Structure-based Routing. In: EDOC 2006: Proceedings of the 10th IEEE International Enterprise Distributed Object Computing Conference, Washington, DC, USA, pp. 153–164. IEEE Computer Society, Los Alamitos (2006)
Kuper, G., Massacci, F., Rassadko, N.: Generalized XML Security Views. In: SACMAT 2005: Proceedings of the tenth ACM symposium on Access control models and technologies, pp. 77–84. ACM Press, New York (2005)
Miklau, G., Suciu, D.: Controlling Access to Published Data Using Cryptography. In: VLDB, pp. 898–909 (2003)
Murata, M., Tozawa, A., Kudo, M., Hada, S.: XML Access Control Using Static Analysis. In: CCS 2003: Proceedings of the 10th ACM conference on Computer and communications security, pp. 73–84. ACM Press, New York (2003)
Parmar, V., Shi, H., Chen, S.-S.: XML Access Control for Semantically Related XML Documents. In: Proceedings of the 36th Annual Hawaii International Conference on System Sciences, p. 10 (January 2003)
Rahaman, M.A., Roudier, Y., Schaad, A.: Distributed Access Control for XML Document Centric Collaborations. In: EDOC 2008, 12th IEEE International Enterprise Distributed Object Computing Conference, Munich, Germany. IEEE Computer Society, Los Alamitos (2008)
Yagüe, M.I., del-mar Gallardo, M., Maña, A.: Semantic access control model: A formal specification. In: di Vimercati, S.d.C., Syverson, P.F., Gollmann, D. (eds.) ESORICS 2005. LNCS, vol. 3679, pp. 24–43. Springer, Heidelberg (2005)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2009 IFIP International Federation for Information Processing
About this paper
Cite this paper
Rahaman, M.A., Roudier, Y., Miseldine, P., Schaad, A. (2009). Ontology-Based Secure XML Content Distribution. In: Gritzalis, D., Lopez, J. (eds) Emerging Challenges for Security, Privacy and Trust. SEC 2009. IFIP Advances in Information and Communication Technology, vol 297. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-01244-0_26
Download citation
DOI: https://doi.org/10.1007/978-3-642-01244-0_26
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-01243-3
Online ISBN: 978-3-642-01244-0
eBook Packages: Computer ScienceComputer Science (R0)