Skip to Main content Skip to Navigation
Journal articles

Tamper-Resistant Ubiquitous Data Management

Luc Bouganim 1, 2 François Dang Ngoc 1 Philippe Pucheral 1, 2 
1 SMIS - Secured and Mobile Information Systems
PRISM - Parallélisme, Réseaux, Systèmes, Modélisation, UVSQ - Université de Versailles Saint-Quentin-en-Yvelines, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR8144
Abstract : Chip-Secured XML Access (C-SXA) is a versatile and tamper-resistant XML-based Access Right Controller embedded in a smart card. C-SXA can be used either to protect the privacy of onboard personal data or to control the flow of data extracted from an external source. Tamperresistance is inherited from the smart card for on-board data or achieved using cryptographic techniques for external data. C-SXA can provide different views of the same on-board or external data depending on the user or application accessing them. Moreover, access control on external data can benefit from on-board storage to enforce powerful, context dependant access control policies. These two features allow C-SXA to address a wide range of applications such as secure portable folders, data sharing among a community of users, parental control and Digital Right Management, in a more secure and accurate way than existing technologies. This work relates the C-SXA experience. We first motivate the interest of the approach and describe different usage scenarios. We then present the internals of C-SXA and show how they tackle the smart card's hardware limitations. Finally, we demonstrate its viability showing how our smart card engine can be integrated in a distributed architecture including the smart card, the server and the user terminal, making the complete chain from the user to the data secure
Document type :
Journal articles
Complete list of metadata

Cited literature [26 references]  Display  Hide  Download
Contributor : Elisabeth Baque Connect in order to contact the contributor
Submitted on : Tuesday, September 2, 2008 - 1:14:38 PM
Last modification on : Friday, January 21, 2022 - 3:15:43 AM
Long-term archiving on: : Thursday, June 3, 2010 - 7:21:50 PM


Files produced by the author(s)


  • HAL Id : inria-00316020, version 1



Luc Bouganim, François Dang Ngoc, Philippe Pucheral. Tamper-Resistant Ubiquitous Data Management. International Journal of Computer Systems Science & Engineering, CRL Publishing Ltd, 2005, 20 (2). ⟨inria-00316020⟩



Record views


Files downloads