XML文档中心协作的分布式访问控制

2008 12th International IEEE Enterprise Distributed Object Computing Conference Pub Date : 2008-09-15 DOI:10.1109/EDOC.2008.31

Mohammad Ashiqur Rahaman, Y. Roudier, A. Schaad

{"title":"XML文档中心协作的分布式访问控制","authors":"Mohammad Ashiqur Rahaman, Y. Roudier, A. Schaad","doi":"10.1109/EDOC.2008.31","DOIUrl":null,"url":null,"abstract":"This paper introduces a distributed and fine grained access control mechanism based on encryption for XML document centric collaborative applications. This mechanism also makes it possible to simultaneously protect the confidentiality of a document and to verify its authenticity and integrity, as well to trace its updates. The enforcement of access control is distributed to participants and does not rely on a central authority. Novel aspects of the proposed framework include the adoption of a decentralized key management scheme to support the client-based enforcement of the access control policy. This scheme is driven by the expression of access patterns of interest of the participants over document parts to determine the keys required. A lazy rekeying protocol is also defined to accommodate the delegation of access control decisions that in particular reduces rekeying latency when faced with the addition and removal of participants.","PeriodicalId":210496,"journal":{"name":"2008 12th International IEEE Enterprise Distributed Object Computing Conference","volume":"4 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-09-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":"{\"title\":\"Distributed Access Control For XML Document Centric Collaborations\",\"authors\":\"Mohammad Ashiqur Rahaman, Y. Roudier, A. Schaad\",\"doi\":\"10.1109/EDOC.2008.31\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper introduces a distributed and fine grained access control mechanism based on encryption for XML document centric collaborative applications. This mechanism also makes it possible to simultaneously protect the confidentiality of a document and to verify its authenticity and integrity, as well to trace its updates. The enforcement of access control is distributed to participants and does not rely on a central authority. Novel aspects of the proposed framework include the adoption of a decentralized key management scheme to support the client-based enforcement of the access control policy. This scheme is driven by the expression of access patterns of interest of the participants over document parts to determine the keys required. A lazy rekeying protocol is also defined to accommodate the delegation of access control decisions that in particular reduces rekeying latency when faced with the addition and removal of participants.\",\"PeriodicalId\":210496,\"journal\":{\"name\":\"2008 12th International IEEE Enterprise Distributed Object Computing Conference\",\"volume\":\"4 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-09-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"12\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 12th International IEEE Enterprise Distributed Object Computing Conference\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EDOC.2008.31\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 12th International IEEE Enterprise Distributed Object Computing Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EDOC.2008.31","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 12

摘要

针对以XML文档为中心的协作应用，提出了一种基于加密的分布式细粒度访问控制机制。这种机制还可以同时保护文档的机密性，验证其真实性和完整性，以及跟踪其更新。访问控制的实施是分发给参与者的，不依赖于一个中央机构。提出的框架的新方面包括采用分散的密钥管理方案来支持基于客户端的访问控制策略的实施。该方案由参与者对文档部分感兴趣的访问模式的表达式驱动，以确定所需的键。还定义了一个延迟密钥更新协议，以适应访问控制决策的委托，特别是在面对添加和删除参与者时减少密钥更新延迟。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Distributed Access Control For XML Document Centric Collaborations

This paper introduces a distributed and fine grained access control mechanism based on encryption for XML document centric collaborative applications. This mechanism also makes it possible to simultaneously protect the confidentiality of a document and to verify its authenticity and integrity, as well to trace its updates. The enforcement of access control is distributed to participants and does not rely on a central authority. Novel aspects of the proposed framework include the adoption of a decentralized key management scheme to support the client-based enforcement of the access control policy. This scheme is driven by the expression of access patterns of interest of the participants over document parts to determine the keys required. A lazy rekeying protocol is also defined to accommodate the delegation of access control decisions that in particular reduces rekeying latency when faced with the addition and removal of participants.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2008 12th International IEEE Enterprise Distributed Object Computing Conference

自引率

0.00%

发文量