Presentation 2003/7/10
XML Access Control Using Static Analysis
Makoto MURATA, Akihiko TOZAWA, Michiharu KUDO, Satoshi HADA,
PDF Download Page PDF download Page Link
Abstract(in Japanese) (See Japanese page)
Abstract(in English) Access control policies for XML database typically use regular path expressions such as XPath for specifying the objects to be accessed. However such access control policies are burdens to XQuery engines. To relieve this burden, we introduce static analysis for XML access control. Given an access control policy, query expression, and an optional schema, static analysis determines if this query expression is guaranteed not to access elements or attributes that are permitted by the schema but hidden by the access control policy. Static analysis can be performed without evaluating any query expression against an actual database. Run-time checking is required only when static analysis is unable to determine whether to grant or deny access requests. We have built a prototype of static analysis for XQuery, and shown the effectiveness through experiments.
Keyword(in Japanese) (See Japanese page)
Keyword(in English) XML database / XQuery / XPath / access control / automaton
Paper # ISEC2003-23
Date of Issue

Conference Information
Committee ISEC
Conference Date 2003/7/10(1days)
Place (in Japanese) (See Japanese page)
Place (in English)
Topics (in Japanese) (See Japanese page)
Topics (in English)
Chair
Vice Chair
Secretary
Assistant

Paper Information
Registration To Information Security (ISEC)
Language ENG
Title (in Japanese) (See Japanese page)
Sub Title (in Japanese) (See Japanese page)
Title (in English) XML Access Control Using Static Analysis
Sub Title (in English)
Keyword(1) XML database
Keyword(2) XQuery
Keyword(3) XPath
Keyword(4) access control
Keyword(5) automaton
1st Author's Name Makoto MURATA
1st Author's Affiliation IBM Japan, Co.,Ltd. Tokyo Research Laboratory()
2nd Author's Name Akihiko TOZAWA
2nd Author's Affiliation IBM Japan, Co.,Ltd. Tokyo Research Laboratory
3rd Author's Name Michiharu KUDO
3rd Author's Affiliation IBM Japan, Co.,Ltd. Tokyo Research Laboratory
4th Author's Name Satoshi HADA
4th Author's Affiliation IBM Japan, Co.,Ltd. Tokyo Research Laboratory
Date 2003/7/10
Paper # ISEC2003-23
Volume (vol) vol.103
Number (no) 195
Page pp.pp.-
#Pages 8
Date of Issue