Skip to Main content Skip to Navigation
Conference papers

Client-based access control management for XML document

Luc Bouganim 1, 2 François Dang Ngoc 1 Philippe Pucheral 1, 2 
1 SMIS - Secured and Mobile Information Systems
PRISM - Parallélisme, Réseaux, Systèmes, Modélisation, UVSQ - Université de Versailles Saint-Quentin-en-Yvelines, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR8144
Abstract : The erosion of trust put in traditional database servers and in Database Service Providers, the growing interest for different forms of data dissemination and the concern for protecting children from suspicious Internet content are different factors that lead to move the access control from servers to clients. Several encryption schemes can be used to serve this purpose but all suffer from a static way of sharing data. With the emergence of hardware and software security elements on client devices, more dynamic client-based access control schemes can be devised. This paper proposes an efficient client-based evaluator of access control rules for regulating access to XML documents. This evaluator takes benefit from a dedicated index to quickly converge towards the authorized parts of a – potentially streaming – document. Additional security mecanisms guarantee that prohibited data can never be disclosed during the processing and that the input document is protected from any form of tampering. Experiments on synthetic and real datasets demonstrate the effectiveness of the approach.
Document type :
Conference papers
Complete list of metadata

Cited literature [16 references]  Display  Hide  Download
Contributor : Elisabeth Baque Connect in order to contact the contributor
Submitted on : Wednesday, November 19, 2008 - 4:25:45 PM
Last modification on : Wednesday, April 6, 2022 - 3:48:21 PM
Long-term archiving on: : Monday, June 7, 2010 - 11:08:00 PM


Publisher files allowed on an open archive


  • HAL Id : inria-00340026, version 1



Luc Bouganim, François Dang Ngoc, Philippe Pucheral. Client-based access control management for XML document. 30th International Conference on Very Large Data Bases ‪: VLDB 2004, 2004, Toronto, Canada. pp.84-95. ⟨inria-00340026⟩



Record views


Files downloads