SVMAX: a system for secure and valid manipulation of XML data

Houari Mahfoud 1 Abdessamad Imine 1 Michael Rusinowitch 1
1 CASSIS - Combination of approaches to the security of infinite states systems
FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174), Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : It is increasingly common to find XML views used to enforce access control as found in many applications and commercial database systems. To overcome the overhead of view materialization and maintenance, XML views are necessarily virtual. With this comes the need for answering XML queries posed over virtual views, by rewriting them into equivalent queries on the underlying documents. A major concern here is that query rewriting for recursive XML views is still an open problem, and proposed approaches deal only with non-recursive XML views. Moreover, a small number of works have studied the access rights for updates. In this paper, we present SVMAX (Secure and Valid MAnipulation of XML), the first system that supports specification and enforcement of both read and update access policies over arbitrary XML views (recursive or non). SVMAX defines general and expressive models for controlling access to XML data using significant class of XPath queries and in the presence of the update primitives of W3C XQuery Update Facility. Furthermore, SVMAX features an additional module enabling efficient validation of XML documents after primitive updates of XQuery. The wide use of W3C standards makes of SVMAX a useful system that can be easily integrated within commercial database systems as we will show. We give extensive experimental results, based on real-life DTDs, that show the efficiency and scalability of our system.
Document type :
Conference papers
Complete list of metadatas

https://hal.inria.fr/hal-00915318
Contributor : Michaël Rusinowitch <>
Submitted on : Saturday, December 7, 2013 - 11:01:46 AM
Last modification on : Tuesday, December 18, 2018 - 4:38:25 PM

Identifiers

Citation

Houari Mahfoud, Abdessamad Imine, Michael Rusinowitch. SVMAX: a system for secure and valid manipulation of XML data. IDEAS'13 Proceedings of the 17th International Database Engineering & Applications Symposium, Oct 2013, Barcelone, Spain. ⟨10.1145/2513591.2513657⟩. ⟨hal-00915318⟩

Share

Metrics

Record views

291