Sciweavers

CIKM
2004
Springer

QFilter: fine-grained run-time XML access control via NFA-based query rewriting

14 years 6 months ago
QFilter: fine-grained run-time XML access control via NFA-based query rewriting
At present, most of the state-of-the-art solutions for XML access controls are either (1) document-level access control techniques that are too limited to support fine-grained security enforcement; (2) view-based approaches that are often expensive to create and maintain; or (3) impractical proposals that require substantial security-related support from underlying XML databases. In this paper, we take a different approach that assumes no security support from underlying XML databases and examine three alternative fine-grained XML access control solutions, namely primitive, pre-processing and post-processing approaches. In particular, we advocate a pre-processing method called QFilter that uses Non-deterministic Finite Automata (NFA) to rewrite user's query such that any parts violating access control rules are pruned. We show the construction and execution of a QFilter and demonstrate its superiority to other competing methods. Categories and Subject Descriptors H.2.7 [Database ...
Bo Luo, Dongwon Lee, Wang-Chien Lee, Peng Liu
Added 01 Jul 2010
Updated 01 Jul 2010
Type Conference
Year 2004
Where CIKM
Authors Bo Luo, Dongwon Lee, Wang-Chien Lee, Peng Liu
Comments (0)