History-based access control for XML documents

Röder, Patrick; Tafreschi, Omid; Eckert, Claudia

doi:10.1145/1229285.1229336

Cited by 5 publications

(3 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…According to Roder et al (2007) access to a document and its parts can be defined based both on the current document content and on the history information that captures the operations performed on that document. Moreover, the history information includes the source of the parts of a document that were transferred from different documents.…”

Section: Xml Access Controlmentioning

confidence: 99%

Flexible access control framework for MARC records

Sladić

Milosavljević

Surla

et al. 2012

The Electronic Library

View full text Add to dashboard Cite

2012),"Web-based library services in university libraries in India: an analysis of librarians' perspective", The Electronic Library, Vol. 30 Iss 5 pp. 569-588 http://dx.If you would like to write for this, or any other Emerald publication, then please use our Emerald for Authors service information about how to choose which publication to write for and submission guidelines are available for all. Please visit www.emeraldinsight.com/authors for more information. About Emerald www.emeraldinsight.comEmerald is a global publisher linking research and practice to the benefit of society. The company manages a portfolio of more than 290 journals and over 2,350 books and book series volumes, as well as providing an extensive range of online products and additional customer resources and services.Emerald is both COUNTER 4 and TRANSFER compliant. The organization is a partner of the Committee on Publication Ethics (COPE) and also works with Portico and the LOCKSS initiative for digital archive preservation. AbstractPurpose -The goal of this paper is to propose a data access control framework that is used for editing MARC-based bibliographic databases. In cases where the bibliographic record editing activities carried out in libraries are complex and involve many people with different skills and expertise, a way of managing the workflow and data quality is needed. Enforcing access control can contribute to these goals. Design/methodology/approach -The proposed solution for data access control enforcement is based on the well-studied standard role-based access control (RBAC) model. The bibliographic data, for the purpose of this system, is represented using the XML language. The software architecture of the access control system is modelled using the Unified Modelling Language (UML). Findings -The access control framework presented in this paper represents a successful application of concepts of role-based access control to bibliographic databases. The use of XML language for bibliographic data representation provides the means to integrate this solution into many different library information systems, facilitates data exchange and simplifies the software implementation because of the abundance of available XML tools. The solution presented is not dependent on any particular XML schema for bibliographic records and may be used in different library environments. Its flexibility stems from the fact that access control rules can be defined at different levels of granularity and for different XML schemas. Research limitations/implications -This access control framework is designed to handle XML documents. Library systems that utilise bibliographic databases in other formats not easily convertible to XML would hardly integrate the framework into their environment. Practical implications -The use of an access control enforcement framework in a bibliographic database can significantly improve the quality of data in organisations where record editing is performed by a large number of people with different skills. The examples of acc...

show abstract

Section: Xml Access Controlmentioning

confidence: 99%

Flexible access control framework for MARC records

Sladić

Milosavljević

Surla

et al. 2012

The Electronic Library

View full text Add to dashboard Cite

show abstract

“…Miklau and Suciu in [26] and Crampton in [11,12] consider use of cryptographic methods for XML access control. In [30] access to a document and its parts can be defined based both on the current document content and on the history information that captures the operations performed on that document. Knowledge based formal approach to ensure the security of web-based XML documents is presented in [2].…”

Section: Introductionmentioning

confidence: 99%

Computer aided anonymization and redaction of judicial documents

et al. 2016

View full text Add to dashboard Cite

Public access to case law is a required prerequisite for the legal certainty and the rule of law. Nevertheless, according to the law, only authorized persons can access judgments in their non-anonymized and unredacted form. This paper proposes a computer aided method for anonymization and redaction of judgments, with an aim to improve efficiency of overall process. The anonymization and redaction procedure is based on the access control mechanism for XML documents. AKOMA NTOSO is chosen as an XML format in order to facilitate integration with other (legal) information systems, but the proposed method can be easily adapted to different document types and different XML formats. The method is verified by a prototype implementation which is validated by employees in a court of law.

show abstract

“…U radu [212] razmatrana je kontrola pristupa XML dokumentima koja može da zavisi od tekućeg sadržaja dokumenta, ali i od podataka iz istorije dokumenta. U ovom slučaju istorija dokumenta sadrži podatke o operacijama izvršenim nad dokumentom i podatke o delovima dokumenta koji originalno potiču iz nekih drugih dokumenata.…”

Section: Rbac Modeli Za Xml Dokumenteunclassified

Context sensitive access control model for business processes

Sladić¹

View full text Add to dashboard Cite

Kontrola pristupa ili autorizacija, uširem smislu, kao koncept postoji otkaď covek ima potrebu da nešto zaštiti. Straže, kapije i brave su korišćene još od najranijeg doba da bi se sprečio pristup dragocenim resursima. U današnjem dobu informacionih tehnologija autorizacija, obično, razmatra na koji način korisnici mogu pristupiti resursima računarskog sistema ili "košta može da radi". Autorizacija predstavlja, neosporivo, fundamentalni sigurnosni mehanizam koji je danas u upotrebi. Kontrola pristupa je samo jedan aspekt složene i opširne bezbednosti računarskog sistema, ali je i jedan od njegovih najvažnijih delova. Ugrožavanje resursa, sa sigurnosnog aspekta, može se podeliti u sledećačetiri tipa [105]:

show abstract

History-based access control for XML documents

Cited by 5 publications

References 7 publications

Flexible access control framework for MARC records

Flexible access control framework for MARC records

Computer aided anonymization and redaction of judicial documents

Context sensitive access control model for business processes

Contact Info

Product

Resources

About