Compact Access Control Labeling for Efficient Secure XML Query Evaluation

Huaxin Zhang, Ning Zhang, K. Salem, Donghui Zhuo
2005 21st International Conference on Data Engineering Workshops (ICDEW'05)  
Fine-grained access controls for XML define access privileges at the granularity of individual XML nodes. In this paper, we present a fine-grained access control mechanism for XML data. This mechanism exploits the structural locality of access rights as well as correlations among the access rights of different users to produce a compact physical encoding of the access control data. This encoding can be constructed using a single pass over a labeled XML database. It is block-oriented and
more » ... for use in secondary storage. We show how this access control mechanism can be integrated with a next-of-kin (NoK) XML query processor to provide efficient, secure query evaluation. The key idea is that the structural information of the nodes and their encoded access controls are stored together so the access privileges can be checked efficiently. Our evaluation shows that the access control mechanism introduces little overhead into the query evaluation process.
doi:10.1109/icde.2005.206 dblp:conf/icde/Zhang0SZ05 fatcat:fmzkeyy37jhpfa6bpn33upadoq