Static analysis of xml security views and query rewriting

Abstract : In this paper, we revisit the view based security framework for XML without imposing any of the previously considered restrictions on the class of queries, the class of DTDs, and the type of annotations used to define the view. First, we study {\em query rewriting} with views when the classes used to define queries and views are Regular XPath and MSO. Next, we investigate problems of {\em static analysis} of security access specifications (SAS): we introduce the novel class of \emph{interval-bounded} SAS and we define three different manners to compare views (i.e. queries), with a security point of view. We provide a systematic study of the complexity for deciding these three comparisons, when the depth of the XML documents is bounded, when the document may have an arbitrary depth but the queries defining the views are restricted to guarantee the interval-bounded property, and in the general setting without restriction on queries and document.
Type de document :
Article dans une revue
Information and Computation, Elsevier, 2013
Liste complète des métadonnées

Littérature citée [33 références]  Voir  Masquer  Télécharger

https://hal.archives-ouvertes.fr/hal-00796297
Contributeur : Inria Mostrare <>
Soumis le : mercredi 22 mai 2013 - 10:21:57
Dernière modification le : vendredi 13 octobre 2017 - 15:50:01
Document(s) archivé(s) le : vendredi 23 août 2013 - 02:40:13

Fichier

article.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-00796297, version 1

Citation

Benoit Groz, Slawomir Staworko, Anne-Cécile Caron, Yves Roos, Sophie Tison. Static analysis of xml security views and query rewriting. Information and Computation, Elsevier, 2013. 〈hal-00796297〉

Partager

Métriques

Consultations de la notice

471

Téléchargements de fichiers

339