Advertisement

Secure Interoperability between Cooperating XML Systems by Dynamic Role Translation

  • Somchai Chatvichienchai
  • Mizuho Iwaihara
  • Yahiko Kambayashi
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 2736)

Abstract

The integration of XML data among organizations is essential for providing information infrastructure for global e-services. Secure data sharing and interoperability among cooperating XML systems is a major concern. Role-based access control (RBAC) models appear to be the most attractive solution for providing fine-grained access control on shared XML data among cooperating XML systems. In this paper we propose a dynamic role translation in order to provide secure data sharing among systems while preserving necessary autonomy of each individual system. We address security violation caused by associating roles among XML systems and give our solution.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Bertino, E., Castano, S., Ferrari, S., Mesiti, M.: Specifying and Enforcing Access Control Policies for XML Document Sources. In: World Wide Web, Baltzer, vol. 3(3) (2000)Google Scholar
  2. 2.
    Bodlaender, H.L.: Dynamic programming on graphs with bounded tree-width. In: Lepistö, T., Salomaa, A. (eds.) ICALP 1988. LNCS, vol. 317, pp. 103–118. Springer, Heidelberg (1988)Google Scholar
  3. 3.
    Bonatti, P.A., Sapino, M.L., Subrahmanian, V.S.: Merging heterogeneous security orderings. In: Martella, G., Kurth, H., Montolivo, E., Bertino, E. (eds.) ESORICS 1996. LNCS, vol. 1146, pp. 183–197. Springer, Heidelberg (1996)Google Scholar
  4. 4.
    Chatvichienchai, S., Iwaihara, M., Kambayashi, Y.: Towards Translating Authorizations for Transformed XML Documents. In: Proc. 3rd Int. Conf. Web Info. Systems Engineering (WISE), pp. 291–300 (December 2002)Google Scholar
  5. 5.
    Damiani, E., De Capitani di Vimercati, S., Paraboschi, S., Samarati, P.: Fine Grained Access Control for SOAP e-Services. In: 10th Int. World Wide Web Conf., pp. 504–513. ACM Press, New York (2001)CrossRefGoogle Scholar
  6. 6.
    Damiani, E., De Capitani di Vimercati, S., Paraboschi, S., Samarati, P.: A Fine-grained Access Control System for XML Documents. ACM Trans. Info. and Syst. Security (TISSEC) 5(2), 169–202 (2002)CrossRefGoogle Scholar
  7. 7.
    Doan, A.H., Domingos, P., Halevy, A.: Reconciling Schemas of Disparate Data Sources: a Machine-Learning Approach. In: Proc ACM SIGMOD Conf., pp. 509–520 (2001)Google Scholar
  8. 8.
    Garey, M.R., Johnson, D.S.: Computers and Intractability, A Guide to the Theory of NP-Completeness, p. 192. W.H. Freeman, New York (1979)zbMATHGoogle Scholar
  9. 9.
    Hitchens, M., Varadharajan, V.: RBAC for XML Document Stores. In: Information and Communications Security, 3rd Int. Conf., pp. 131–143 (2001)Google Scholar
  10. 10.
    Jonscher, D., Dittrich, K.R.: An Approach for Building Secure Database Federations. In: Proc. 20th VLDB Conference, pp. 24–35 (1994)Google Scholar
  11. 11.
    Madhavan, J., Bernstein, P.A., Rahm, E.: Generic Schema Matching with Cupid. In: Proc. 27th VLDB Conference, Roma, Italy, pp. 49–58 (2001)Google Scholar
  12. 12.
    Osborn, S.: Database Security Integration Using Role-Based Access Control. In: Proc. TC11/ WG11.3 14th Ann. Working Conf. Database Security, pp. 245–258 (August 2000)Google Scholar
  13. 13.
    van Leeuwen, J. (ed.): Handbook of Theoretical Computer Science. Algorithm and Complexity, vol. A, p. 549. MIT Press, Cambridge (1990)Google Scholar
  14. 14.
    Wang, L., Wijesekera, D., Jajodia, S.: Towards Secure XML Federations. In: 16th IFIP WG11.3 Working Conf. Database and Application Security (2002)Google Scholar
  15. 15.
    W3C. Extensible Markup Language (XML) 1.0 (2nd edn.) (October 2000), http://www.w3c.org/TR/REC-xml

Copyright information

© Springer-Verlag Berlin Heidelberg 2003

Authors and Affiliations

  • Somchai Chatvichienchai
    • 1
  • Mizuho Iwaihara
    • 1
  • Yahiko Kambayashi
    • 1
  1. 1.Department of Social InformaticsKyoto UniversityYoshida Sakyo KyotoJapan

Personalised recommendations