Internet Archive Scholar

Verification of the Security against Inference Attacks on XML Databases

Kenji HASHIMOTO, Kimihide SAKANO, Fumikazu TAKASUKA, Yasunori ISHIHARA, Toru FUJIWARA
2009 IEICE transactions on information and systems  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (830.3 kB)
https://web.archive.org/web/20180724065807/https://www.jstage.jst.go.jp/article/transinf/E92.D/5/E92.D_5_1022/_pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2018; you can also visit the original URL. The file type is application/pdf.

This paper discusses verification of the security against inference attacks on XML databases. First, a security definition called ksecrecy against inference attacks on XML databases is proposed. k-secrecy with an integer k > 1 (or k = ∞) means that attackers cannot narrow down the candidates for the value of the sensitive information to k − 1 (or finite), using the results of given authorized queries and schema information. Secondly, an XML query model such that verification can be performed
more » ... aightforwardly according to the security definition is presented. The query model can represent practical queries which extract some nodes according to any of their neighboring nodes such as ancestors, descendants, and siblings. Thirdly, another refinement of the verification method is presented, which produces much smaller intermediate results if a schema contains no arbitrarily recursive element. The correctness of the refinement is proved, and the effect of the refinement in time and space efficiency has been confirmed by experiment.
doi:10.1587/transinf.e92.d.1022 fatcat:tcwlmzo5srdwde2unjgz37ewya
Citation

Kenji HASHIMOTO, Kimihide SAKANO, Fumikazu TAKASUKA, Yasunori ISHIHARA, Toru FUJIWARA. "Verification of the Security against Inference Attacks on XML Databases." IEICE transactions on information and systems E92-D.5 (2009) 1022-1032