The eXtensible Markup Language (XML) are being upheld as having the potential to change the way business is conducted. This will be effected by changing the way in which information is shared. However, with the sharing of information, information security becomes a concern. This paper presents an access control architecture that allows for the sharing of XML documents in workflow environments. The architecture addresses the issue of access control from two perspectives. On the one hand, issues regarding the confidentiality of information are addressed. On the other hand, the semantic integrity of information is attended to. The paper shows how the access control services, provided as part of the architecture, achieve these objectives.
Reinhardt A. Botha, Jan H. P. Eloff