We investigate the experimental effectiveness of XML security views. Our model consists of access control policies specified over DTDs with XPath expression for data-dependent access control policies. We provide the notion of security views for characterizing information accessible to authorized users. This is a transformed (sanitized) DTD schema that is used by users for query formulation. To avoid the overhead of view materialization in query answering, these queries later undergo rewriting so that they are valid over the original DTD schema, and thus the query answer is computed from the original XML data. We provide an algorithm for query rewriting and show its performance compared with the naive approach, i.e. the approach that requires view materialization.

Query Rewriting over Generalized XML Security Views / Kuper, Gabriel; Massacci, Fabio; Rassadko, Nataliya. - ELETTRONICO. - (2005), pp. 1-14.

Query Rewriting over Generalized XML Security Views

Kuper, Gabriel;Massacci, Fabio;
2005-01-01

Abstract

We investigate the experimental effectiveness of XML security views. Our model consists of access control policies specified over DTDs with XPath expression for data-dependent access control policies. We provide the notion of security views for characterizing information accessible to authorized users. This is a transformed (sanitized) DTD schema that is used by users for query formulation. To avoid the overhead of view materialization in query answering, these queries later undergo rewriting so that they are valid over the original DTD schema, and thus the query answer is computed from the original XML data. We provide an algorithm for query rewriting and show its performance compared with the naive approach, i.e. the approach that requires view materialization.
2005
Trento
Università degli Studi di Trento - Dipartimento di Informatica e Telecomunicazioni
Query Rewriting over Generalized XML Security Views / Kuper, Gabriel; Massacci, Fabio; Rassadko, Nataliya. - ELETTRONICO. - (2005), pp. 1-14.
Kuper, Gabriel; Massacci, Fabio; Rassadko, Nataliya
File in questo prodotto:
File Dimensione Formato  
DIT-05-060.pdf

accesso aperto

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 252.12 kB
Formato Adobe PDF
252.12 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/358004
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
  • OpenAlex ND
social impact