Author-χ: A Java-Based System For XML Data Protection

E. Bertino,
M. Braun,
S. Castano,
E. Ferrari &
…
M. Mesiti

Part of the book series: IFIP International Federation for Information Processing ((IFIPAICT,volume 73))

783 Accesses

Abstract

Author-χ is a Java-based system for access control to XML documents. Author-χ implements a discretionary access control model specifically tailored to the characteristics of XML documents. In particular, our system allows (i) a set-oriented and single-oriented document protection, by supporting authorizations both at document type and document level; (ii) a differentiated protection of document/document type contents by supporting multi-granularity protection objects and positive/negative authorizations; (iii) a controlled propagation of authorizations among protection objects, by enforcing multiple propagation options.

This work has been partially supported by a grant from Microsoft Research.

Download to read the full chapter text

Chapter PDF

Keywords

References

E. Bertino, M. Brawn, S. Castano, B. Ferrari, and M. Mesiti. Author-χ: a Java-Based System for XML Data Protection. In pre-Proc. of 14th IFIP WG11.3 Working Conference on Database and Application Security. Schoorl, The Netherlands, August, 2000.
Google Scholar
E. Bertino, S. Castano, E. Ferrari, and M. Mesiti. Specifying and Enforcing Access Control Policies for XML Document Sources. World Wide Web Journal, 3(3), 2000.
Google Scholar
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati. Securing XML Documents. In Proc. of EDBT, 2000.
Google Scholar
Object Design Inc. An XML Data Server for Building Enterprise Web Applications
Google Scholar
J.Robie. XQLTutorial, 2000. http://www.ibiblio.org/xql/xql-tutorial.html.
P. Samarati, E. Bertino, and S. Jajodia. An Authorization Model for a Distributed Hypertext System. IEEE TKDE, 8(4):555–562, 1996.
Google Scholar
Sigmod Record XML Database, http://www.dia.uniroma3. it/Areneus/Sigmod/.
W3C. Document Object Model 1, 1998. http://www.w3.org/DOM/.
W3C. Extensible Markup Language 1.0, 1998. http://www.w3.org/TR/REC-xml.
W3C. XML Path Language, 1.0, 1999. http://www.w3.org/TR/xpath.

Download references

Authors

E. Bertino
View author publications
You can also search for this author in PubMed Google Scholar
M. Braun
View author publications
You can also search for this author in PubMed Google Scholar
S. Castano
View author publications
You can also search for this author in PubMed Google Scholar
E. Ferrari
View author publications
You can also search for this author in PubMed Google Scholar
M. Mesiti
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

The MITRE Corporation, USA
Bhavani Thuraisingham
Vrije Universiteit, The Netherlands
Reind van de Riet
Universität Zürich, Switzerland
Klaus R. Dittrich
RMIT University, Australia
Zahir Tari

Rights and permissions

Reprints and permissions

Copyright information

About this chapter

Cite this chapter

Bertino, E., Braun, M., Castano, S., Ferrari, E., Mesiti, M. (2002). Author-χ: A Java-Based System For XML Data Protection. In: Thuraisingham, B., van de Riet, R., Dittrich, K.R., Tari, Z. (eds) Data and Application Security. IFIP International Federation for Information Processing, vol 73. Springer, Boston, MA. https://doi.org/10.1007/0-306-47008-X_2

Download citation

DOI: https://doi.org/10.1007/0-306-47008-X_2
Publisher Name: Springer, Boston, MA
Print ISBN: 978-0-7923-7514-2
Online ISBN: 978-0-306-47008-0
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics