A Standards-Based Approach for Supporting Dynamic Access Policies for a Federated Digital Library

  • K. Bhoopalam
  • K. Maly
  • F. McCown
  • R. Mukkamala
  • M. Zubair
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3815)


With the increasing acceptability of interoperability standards like Open Archives Initiative protocol for metadata harvesting, it is becoming feasible to build federated discovery services which aggregate metadata from different digital libraries (data providers) and provide a unified search interface to users. Content-based access control is one of the primary requirements of data providers. While this concept has been predominant in the research realm, practical systems incorporating this concept are rare. In this paper, we propose a framework that supports and enforces content-based access policies using existing COTS components. We have prototyped the framework by building a system using XACML, and a XACML policy engine. The system can also be generalized to environments other than digital libraries.


metadata access control content management 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Adam, N.R., Atluri, V., Bertino, E., Ferrari, E.: A content-based authorization model for digital libraries. IEEE Trans. on Knowledge and Data Engineering 14(2), 296–315 (2002)CrossRefGoogle Scholar
  2. 2.
    Bhoopalam, K., Maly, K., Mukkamala, R., Zubair, M.: A Flexible Framework for Content Based Access Management for Federated Digital Libraries. In: Proceedings of IADIS, Madrid, October 6-9 (2004)Google Scholar
  3. 3.
    Bhoopalam, K., Maly, K., Mukkamala, R., Zubair, M.: Access Management in Federated Digital Libraries. In: Proceedings of IADIS, Madrid, October 6-9 (2004)Google Scholar
  4. 4.
    Cantor, S., Erdos, M.: Shibboleth-Architecture DRAFT v05 (April 24, 2004),
  5. 5.
    DCMI Metadata Terms, Dublin Core Metadata Initiative,
  6. 6.
  7. 7.
    Hada, S., Kudo, M.: XML Access Control Language: Provisional Authorization for XML Documents, Tokyo Research Laboratory, IBM Research ( October 16, 2000)Google Scholar
  8. 8.
    Kodali, N., Farkas, C., Wijesekera, D.: An Authorization Model for Multimedia Digital Libraries. The Int. Journal of Digital Libraries, Vol 4, 139–155 (2004)CrossRefGoogle Scholar
  9. 9.
    Lagoze, C.H., Sompel, V., Nelson, M., Warner, S.: The Open Archives Initiative Protocol for Metadata Harvesting, Open Archives Initiative. (October 21, 2004),
  10. 10.
    Liu, X., Maly, K., Zubair, M., Nelson, M.: Arc – An OAI Service Provider for Cross Archiving Searching. In: Proceedings of the ACM/IEEE Joint Conference on Digital Libraries, Roanoke, VA, June 24-28, pp. 65–66 (2001)Google Scholar
  11. 11.
    Maly, K., Anan, H., Tang, J., Nelson, M., Zubair, M., Yang, Z.: Challenges in Building Federation Services over Harvested Metadata. In: Sembok, T.M.T., Zaman, H.B., Chen, H., Urs, S.R., Myaeng, S.-H. (eds.) ICADL 2003. LNCS, vol. 2911, pp. 602–614. Springer, Heidelberg (2003)CrossRefGoogle Scholar
  12. 12.
    Moses, T. (ed.): OASIS eXtensible Access Control Management Language (XACML). Version 2.0, OASIS Standard (February 1, 2005),
  13. 13.
    National Science Digital Library (November 5, 2004),
  14. 14.
    Sandhu, R., et al.: Role-Based Access Control Models. IEEE Computer 29(2), 38–47 (1996)Google Scholar
  15. 15.
    Sandhu, R.: The typed access matrix model. In: Proc. of the 11th IEEE Symp. on Security and Privacy, pp. 122–136 (1992)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • K. Bhoopalam
    • 1
  • K. Maly
    • 1
  • F. McCown
    • 1
  • R. Mukkamala
    • 1
  • M. Zubair
    • 1
  1. 1.Department of Computer ScienceOld Dominion UniversityNorfolkUSA

Personalised recommendations