The Dynamic Predicate: Integrating Access Control with Query Processing in XML Databases

Cited 0 time in webofscience Cited 0 time in scopus
  • Hit : 476
  • Download : 125
Recently, access control on XML data has become an important research topic. Previous research on access control mechanisms for XML data has focused on increasing the efficiency of access control itself, but has not addressed the issue of integrating access control with query processing. In this paper, we propose an efficient access control mechanism tightly integrated with query processing for XML databases. We present the novel concept of the dynamic predicate (DP), which represents a dynamically constructed condition during query execution. A DP is derived from instance-level authorizations and constrains accessibility of the elements. The DP allows us to effectively integrate authorization checking into the query plan so that unauthorized elements are excluded in the process of query execution. Experimental results show that the proposed access control mechanism improves query processing time significantly over the state-of-the-art access control mechanisms. We conclude that the DP is highly effective in efficiently checking instance-level authorizations in databases with hierarchical structures.
Publisher
Springer Verlag (Germany)
Issue Date
2007
Keywords

Access control; Query processing; XML databases; Privacy/security

Citation

The VLDB Journal, Vol.16, No.3, pp.371-387

ISSN
1066-8888
DOI
10.1007/s00778-006-0037-7
URI
http://hdl.handle.net/10203/11131
Appears in Collection
CS-Journal Papers(저널논문)

qr_code

  • mendeley

    citeulike


rss_1.0 rss_2.0 atom_1.0