Presentation | 2003/7/10 XML Access Control Using Static Analysis Makoto MURATA, Akihiko TOZAWA, Michiharu KUDO, Satoshi HADA, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | Access control policies for XML database typically use regular path expressions such as XPath for specifying the objects to be accessed. However such access control policies are burdens to XQuery engines. To relieve this burden, we introduce static analysis for XML access control. Given an access control policy, query expression, and an optional schema, static analysis determines if this query expression is guaranteed not to access elements or attributes that are permitted by the schema but hidden by the access control policy. Static analysis can be performed without evaluating any query expression against an actual database. Run-time checking is required only when static analysis is unable to determine whether to grant or deny access requests. We have built a prototype of static analysis for XQuery, and shown the effectiveness through experiments. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | XML database / XQuery / XPath / access control / automaton |
Paper # | ISEC2003-23 |
Date of Issue |
Conference Information | |
Committee | ISEC |
---|---|
Conference Date | 2003/7/10(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Information Security (ISEC) |
---|---|
Language | ENG |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | XML Access Control Using Static Analysis |
Sub Title (in English) | |
Keyword(1) | XML database |
Keyword(2) | XQuery |
Keyword(3) | XPath |
Keyword(4) | access control |
Keyword(5) | automaton |
1st Author's Name | Makoto MURATA |
1st Author's Affiliation | IBM Japan, Co.,Ltd. Tokyo Research Laboratory() |
2nd Author's Name | Akihiko TOZAWA |
2nd Author's Affiliation | IBM Japan, Co.,Ltd. Tokyo Research Laboratory |
3rd Author's Name | Michiharu KUDO |
3rd Author's Affiliation | IBM Japan, Co.,Ltd. Tokyo Research Laboratory |
4th Author's Name | Satoshi HADA |
4th Author's Affiliation | IBM Japan, Co.,Ltd. Tokyo Research Laboratory |
Date | 2003/7/10 |
Paper # | ISEC2003-23 |
Volume (vol) | vol.103 |
Number (no) | 195 |
Page | pp.pp.- |
#Pages | 8 |
Date of Issue |