Supporting XML Security Models Using Relational Databases: A Vision

Lee, Dongwon; Lee, Wang-Chien; Liu, Peng

doi:10.1007/978-3-540-39429-7_18

Cited by 14 publications

(13 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…v i is created to control access to partial data in the base table according to the defined security policy. As a result, access types of users could be classified into four classes as follows [21]. The access types are same with granularity types.…”

Section: Access Typesmentioning

confidence: 99%

A Security Model Based on Relational Model for Semantic Sensor Networks

Jeong

Park

et al. 2009

Wireless Pers Commun

View full text Add to dashboard Cite

This paper proposes a novel security model for secure query processing in semantic sensor networks. A semantic sensor network (SSN) is a sensor network including semantics of sensory data and context information, and relationships between the semantics by using Semantic Web technologies. Even though much research has been activated on SSN, there is little activity on how to securely access data in semantic sensor networks. Most of storages have been developed based on relational database model and the relational database model provides a secure and robust security support. Therefore, we need to devise a security model considering such a real environment. This paper proposes a new access control model for secure query processing in semantic sensor networks. The proposed security model is based on relational database security model. This paper shows the overall framework and 123 132 D. Jeong et al.definitions of the proposal, and the experiment and evaluation is described to show validity of our proposal. With the experiment and evaluation, it is clear that the proposed model provides a secure access control support for SSNs.

show abstract

Section: Access Typesmentioning

confidence: 99%

A Security Model Based on Relational Model for Semantic Sensor Networks

Jeong

Park

et al. 2009

Wireless Pers Commun

View full text Add to dashboard Cite

show abstract

“…Various proposals in support of fine-grained XML access control have been introduced in the literature. These include View-based [2,8,9], Non-Deterministic Finite Automata (NFA)-based [4,21,22], RDBMS-based [18,19,27] XML Access Control Enforcement Techniques, etc. The idea of view-based access control is to create and maintain separate view for each user based on the authorization rules.…”

Section: Related Workmentioning

confidence: 99%

“…Although, Relational Database Management System, due to its structured nature, becomes inappropriate in the context of World Wide Web, most data for XML documents still reside in relational databases behind the scene. The proposals in [18,27,19] takes advantage of relational model, by mapping all the XML data and access controls rules for XML data (in XML format) into the equivalent relational database and structured query language representation. Finally, the accessibility of the data are checked at the level of relational database representation using the SQL representation of the rules.…”

Section: Related Workmentioning

confidence: 99%

Observation-Based Fine Grained Access Control for XML Documents

Halder

Cortesi

2011

Communications in Computer and Information Science

View full text Add to dashboard Cite

Abstract:In this paper, we propose an observation-based fine grained access control (OFGAC) mechanism where data are made accessible at various levels of abstractions according to their sensitivity levels. In this setting, unauthorized users are not able to infer the exact content of the confidential data, while they are allowed to get partial information out of it, according to their access rights. The traditional fine grained access control (FGAC) can be seen as a special case of the OFGAC framework.

show abstract

“…As a result, access types of users could be classified into four classes as follows [21]: Class-I: whole data in a table (Table level) Class-II: all data in specific fields (Column level) Class-III: all data in specific tuples (Row level) Class-IV: random data (Cell level)…”

Section: Access Typesmentioning

confidence: 99%