Securing XML document sources and their distribution

Junqi Zhang; Vijay Varadharajan; Yi Mu

Securing XML document sources and their distribution

Junqi Zhang^*, Vijay Varadharajan, Yi Mu

^*Corresponding author for this work

School of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

3 Citations (Scopus)

Abstract

XML has been becoming popular for data store, document representation and exchange over the web. Security mechanisms for the protection of XML document sources and their distribution are essential. Author-X is a Java based system specifically conceived for the protection of XML documents. It supports a range of protection granularity levels and subject credentials, but also supports push distribution for documents broadcast. However, the proposed system has certain disadvantages in terms of both security and dynamic key management. For example, a sender has to distribute the secret keys to all correspondent users for different XML documents. Also, if one of the users leave or a credential is changed, then the sender has to re-encrypt all related documents and redistribute the secret keys to all correspondent users. In this paper, we present a novel scheme for securing XML documents and their distribution. Our scheme has several advantages over Author-X such as (a) one user needs only one private key, (b) even when the user leaves or a credential is changed, all the other users will be unaffected (c)there is no need to establish a secure channel for key distribution and (d) there is no need for checking the XML documents for access control policies applied. These make the security model more efficient and robust as well as simplifying the programming and the generation of the encrypted document base.

Original language	English
Title of host publication	Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 Volume 1 (Regional Papers)
Editors	L. Barolli
Place of Publication	Los Alamitos, CA
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	562-567
Number of pages	6
Volume	1
ISBN (Print)	0769520510, 9780769520513
Publication status	Published - 2004
Event	Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 - Fukuoka, Japan Duration: 29 Mar 2004 → 31 Mar 2004

Other

Other	Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004
Country/Territory	Japan
City	Fukuoka
Period	29/03/04 → 31/03/04

Keywords

Author-X
Encryption
Key distribution
XML contents

Cite this

@inproceedings{7b3c9d1f14844fb786ea4d239735a8b5,

title = "Securing XML document sources and their distribution",

abstract = "XML has been becoming popular for data store, document representation and exchange over the web. Security mechanisms for the protection of XML document sources and their distribution are essential. Author-X is a Java based system specifically conceived for the protection of XML documents. It supports a range of protection granularity levels and subject credentials, but also supports push distribution for documents broadcast. However, the proposed system has certain disadvantages in terms of both security and dynamic key management. For example, a sender has to distribute the secret keys to all correspondent users for different XML documents. Also, if one of the users leave or a credential is changed, then the sender has to re-encrypt all related documents and redistribute the secret keys to all correspondent users. In this paper, we present a novel scheme for securing XML documents and their distribution. Our scheme has several advantages over Author-X such as (a) one user needs only one private key, (b) even when the user leaves or a credential is changed, all the other users will be unaffected (c)there is no need to establish a secure channel for key distribution and (d) there is no need for checking the XML documents for access control policies applied. These make the security model more efficient and robust as well as simplifying the programming and the generation of the encrypted document base.",

keywords = "Author-X, Encryption, Key distribution, XML contents",

author = "Junqi Zhang and Vijay Varadharajan and Yi Mu",

year = "2004",

language = "English",

isbn = "0769520510",

volume = "1",

pages = "562--567",

editor = "L. Barolli",

booktitle = "Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 Volume 1 (Regional Papers)",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

note = "Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 ; Conference date: 29-03-2004 Through 31-03-2004",

}

Zhang, J, Varadharajan, V & Mu, Y 2004, Securing XML document sources and their distribution. in L Barolli (ed.), Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 Volume 1 (Regional Papers). vol. 1, Institute of Electrical and Electronics Engineers (IEEE), Los Alamitos, CA, pp. 562-567, Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004, Fukuoka, Japan, 29/03/04.

Securing XML document sources and their distribution. / Zhang, Junqi; Varadharajan, Vijay; Mu, Yi.

Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 Volume 1 (Regional Papers). ed. / L. Barolli. Vol. 1 Los Alamitos, CA : Institute of Electrical and Electronics Engineers (IEEE), 2004. p. 562-567.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Securing XML document sources and their distribution

AU - Zhang, Junqi

AU - Varadharajan, Vijay

AU - Mu, Yi

PY - 2004

Y1 - 2004

N2 - XML has been becoming popular for data store, document representation and exchange over the web. Security mechanisms for the protection of XML document sources and their distribution are essential. Author-X is a Java based system specifically conceived for the protection of XML documents. It supports a range of protection granularity levels and subject credentials, but also supports push distribution for documents broadcast. However, the proposed system has certain disadvantages in terms of both security and dynamic key management. For example, a sender has to distribute the secret keys to all correspondent users for different XML documents. Also, if one of the users leave or a credential is changed, then the sender has to re-encrypt all related documents and redistribute the secret keys to all correspondent users. In this paper, we present a novel scheme for securing XML documents and their distribution. Our scheme has several advantages over Author-X such as (a) one user needs only one private key, (b) even when the user leaves or a credential is changed, all the other users will be unaffected (c)there is no need to establish a secure channel for key distribution and (d) there is no need for checking the XML documents for access control policies applied. These make the security model more efficient and robust as well as simplifying the programming and the generation of the encrypted document base.

AB - XML has been becoming popular for data store, document representation and exchange over the web. Security mechanisms for the protection of XML document sources and their distribution are essential. Author-X is a Java based system specifically conceived for the protection of XML documents. It supports a range of protection granularity levels and subject credentials, but also supports push distribution for documents broadcast. However, the proposed system has certain disadvantages in terms of both security and dynamic key management. For example, a sender has to distribute the secret keys to all correspondent users for different XML documents. Also, if one of the users leave or a credential is changed, then the sender has to re-encrypt all related documents and redistribute the secret keys to all correspondent users. In this paper, we present a novel scheme for securing XML documents and their distribution. Our scheme has several advantages over Author-X such as (a) one user needs only one private key, (b) even when the user leaves or a credential is changed, all the other users will be unaffected (c)there is no need to establish a secure channel for key distribution and (d) there is no need for checking the XML documents for access control policies applied. These make the security model more efficient and robust as well as simplifying the programming and the generation of the encrypted document base.

KW - Author-X

KW - Encryption

KW - Key distribution

KW - XML contents

UR - http://www.scopus.com/inward/record.url?scp=3042678051&partnerID=8YFLogxK

M3 - Conference proceeding contribution

AN - SCOPUS:3042678051

SN - 0769520510

SN - 9780769520513

VL - 1

SP - 562

EP - 567

BT - Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004 Volume 1 (Regional Papers)

A2 - Barolli, L.

PB - Institute of Electrical and Electronics Engineers (IEEE)

CY - Los Alamitos, CA

T2 - Proceedings - 18th International Conference on Advanced Information Networking and Applications, AINA 2004

Y2 - 29 March 2004 through 31 March 2004

ER -

Securing XML document sources and their distribution

Abstract

Other

Keywords

Other files and links

Fingerprint

Cite this