Relevancy-based access control and its evaluation on versioned XML documents

Mizuho Iwaihara, Ryotaro Hayashi, Somchai Chatvichienchai, Chutiporn Anutariya, Vilas Wuwongse

Research output: Contribution to journalArticle

2 Citations (Scopus)

Abstract

Integration of version and access control of XML documents has the benefit of regulating access to rapidly growing archives of XML documents. Versioned XML documents provide us with valuable information on dependencies between document nodes, but, at the same time, presenting the risk of undesirable data disclosure. In this article, we introduce the notion of relevancy-based access control, which realizes protection of versioned XML documents by various types of relevancy, such as version dependencies, schema similarities, and temporal proximity. We define a new path query language XVerPath over XML document versions, which can be utilized for specifying relevancy-based access-control policies. We also introduce the notion of relevancy class, for collectively and compactly specifying relevancy-based policies. Regarding efficient processing of access requests, we propose the packed version model, which realizes space-efficient difference-based archives of versioned XML documents and, at the same time, providing efficient evaluation of XVerPath queries. Experimental results show reasonable performance superiority over conventional methods, which do not utilize version differences.

Original languageEnglish
Article number3
JournalACM Transactions on Information and System Security
Volume10
Issue number1
DOIs
Publication statusPublished - 2007 Feb 1
Externally publishedYes

Fingerprint

Access control
XML
Query languages
Processing

Keywords

  • Access control
  • Query language
  • Security
  • Version control
  • XML
  • XPath

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Relevancy-based access control and its evaluation on versioned XML documents. / Iwaihara, Mizuho; Hayashi, Ryotaro; Chatvichienchai, Somchai; Anutariya, Chutiporn; Wuwongse, Vilas.

In: ACM Transactions on Information and System Security, Vol. 10, No. 1, 3, 01.02.2007.

Research output: Contribution to journalArticle

Iwaihara, Mizuho ; Hayashi, Ryotaro ; Chatvichienchai, Somchai ; Anutariya, Chutiporn ; Wuwongse, Vilas. / Relevancy-based access control and its evaluation on versioned XML documents. In: ACM Transactions on Information and System Security. 2007 ; Vol. 10, No. 1.
@article{1a09a796b7ed45a9bf53098968820837,
title = "Relevancy-based access control and its evaluation on versioned XML documents",
abstract = "Integration of version and access control of XML documents has the benefit of regulating access to rapidly growing archives of XML documents. Versioned XML documents provide us with valuable information on dependencies between document nodes, but, at the same time, presenting the risk of undesirable data disclosure. In this article, we introduce the notion of relevancy-based access control, which realizes protection of versioned XML documents by various types of relevancy, such as version dependencies, schema similarities, and temporal proximity. We define a new path query language XVerPath over XML document versions, which can be utilized for specifying relevancy-based access-control policies. We also introduce the notion of relevancy class, for collectively and compactly specifying relevancy-based policies. Regarding efficient processing of access requests, we propose the packed version model, which realizes space-efficient difference-based archives of versioned XML documents and, at the same time, providing efficient evaluation of XVerPath queries. Experimental results show reasonable performance superiority over conventional methods, which do not utilize version differences.",
keywords = "Access control, Query language, Security, Version control, XML, XPath",
author = "Mizuho Iwaihara and Ryotaro Hayashi and Somchai Chatvichienchai and Chutiporn Anutariya and Vilas Wuwongse",
year = "2007",
month = "2",
day = "1",
doi = "10.1145/1210263.1210266",
language = "English",
volume = "10",
journal = "ACM Transactions on Information and System Security",
issn = "1094-9224",
publisher = "Association for Computing Machinery (ACM)",
number = "1",

}

TY - JOUR

T1 - Relevancy-based access control and its evaluation on versioned XML documents

AU - Iwaihara, Mizuho

AU - Hayashi, Ryotaro

AU - Chatvichienchai, Somchai

AU - Anutariya, Chutiporn

AU - Wuwongse, Vilas

PY - 2007/2/1

Y1 - 2007/2/1

N2 - Integration of version and access control of XML documents has the benefit of regulating access to rapidly growing archives of XML documents. Versioned XML documents provide us with valuable information on dependencies between document nodes, but, at the same time, presenting the risk of undesirable data disclosure. In this article, we introduce the notion of relevancy-based access control, which realizes protection of versioned XML documents by various types of relevancy, such as version dependencies, schema similarities, and temporal proximity. We define a new path query language XVerPath over XML document versions, which can be utilized for specifying relevancy-based access-control policies. We also introduce the notion of relevancy class, for collectively and compactly specifying relevancy-based policies. Regarding efficient processing of access requests, we propose the packed version model, which realizes space-efficient difference-based archives of versioned XML documents and, at the same time, providing efficient evaluation of XVerPath queries. Experimental results show reasonable performance superiority over conventional methods, which do not utilize version differences.

AB - Integration of version and access control of XML documents has the benefit of regulating access to rapidly growing archives of XML documents. Versioned XML documents provide us with valuable information on dependencies between document nodes, but, at the same time, presenting the risk of undesirable data disclosure. In this article, we introduce the notion of relevancy-based access control, which realizes protection of versioned XML documents by various types of relevancy, such as version dependencies, schema similarities, and temporal proximity. We define a new path query language XVerPath over XML document versions, which can be utilized for specifying relevancy-based access-control policies. We also introduce the notion of relevancy class, for collectively and compactly specifying relevancy-based policies. Regarding efficient processing of access requests, we propose the packed version model, which realizes space-efficient difference-based archives of versioned XML documents and, at the same time, providing efficient evaluation of XVerPath queries. Experimental results show reasonable performance superiority over conventional methods, which do not utilize version differences.

KW - Access control

KW - Query language

KW - Security

KW - Version control

KW - XML

KW - XPath

UR - http://www.scopus.com/inward/record.url?scp=33847109290&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33847109290&partnerID=8YFLogxK

U2 - 10.1145/1210263.1210266

DO - 10.1145/1210263.1210266

M3 - Article

AN - SCOPUS:33847109290

VL - 10

JO - ACM Transactions on Information and System Security

JF - ACM Transactions on Information and System Security

SN - 1094-9224

IS - 1

M1 - 3

ER -