Secure third party distribution of XML data

Author

Carminati, B. ; Ferrari, E. ; Bertino, E.

Author_Institution

Univ. of Insubria, Como, Italy

fYear

2005

fDate

5-8 April 2005

Firstpage

547

Lastpage

548

Abstract

Web-based third-party architectures for data publishing are today receiving growing attention, due to their scalability and the ability of efficiently managing large numbers of users and great amounts of data. In such architecture security is a primary challenge. Main security properties that should be considered are: confidentiality, integrity, and authenticity. Additionally to these traditional security requirements, we are interested in a further security property, that is, completeness. By completeness we mean that the user receiving a portion of data can verify whether he/she has received all the information is allowed to see according to the specified access control policies. In this paper, we propose a comprehensive framework for a secure third party distribution of XML data. In particular, the framework is able to enforce all the above-mentioned properties, by exploiting encryption and non-conventional signature techniques.

Keywords

XML; authorisation; cryptography; data integrity; digital signatures; query processing; relational databases; Web-based third-party architecture; XML; access control policy; data authenticity; data confidentiality; data integrity; data publishing; encryption; nonconventional signature techniques; query processing; relational databases; secure third party distribution; Access control; Cryptography; Data security; Information security; Project management; Publishing; Relational databases; Scalability; Technology management; XML;

fLanguage

English

Publisher

ieee

Conference_Titel

Data Engineering, 2005. ICDE 2005. Proceedings. 21st International Conference on

ISSN

1084-4627

Print_ISBN

0-7695-2285-8

Type

conf

DOI

10.1109/ICDE.2005.130

Filename

1410169