期刊名称:International Journal of Computer Trends and Technology
电子版ISSN:2231-2803
出版年度:2014
卷号:10
期号:3
页码:121-127
DOI:10.14445/22312803/IJCTT-V10P121
出版社:Seventh Sense Research Group
摘要:An increasing amount of semistructured data, XML has become fundamental to humans and programs. XML changed by the World Wide Web Consortium (w3c) is quickly emerging as a new standard language for semistructured data representation and transfer on the Internet. XML documents usually hold private information that cannot be shared by all user communities. So securing XML data is becoming increasingly important and several approaches have been created to protect information in websites. Usage control has been considered as the next generation access control model with differentiating properties of decision continuity. It has been proven to be efficient to improve security administration with flexible authorization management. Usage control changes finergrained control over usage of digital objects than that of traditional access control policies and models. XML schema defines format and contents of xml instance. Access control established on a schema will be transported to all its instances. Also, XML schema supplies a mechanism to build relationships between schemas and elements. We present a usage control model to protect information distributed on the web. As privacy becomes a major refer for consumers and enterprises, many research have been concentrated on the privacy protecting technology in recent years. In this paper, We present a comprehensive approach for usage access control established on the notion purpose. In our model, purpose information connected with a given data element specifies the intended use of the subjects and objects in the usage access control model. A key feature of our model is that it accepts when an access is required, the access purpose is checked against the intended purposes for the data item. We suggest an approach to represent purpose information to support access control established on purpose information. Finally comparisons with related works are analyzed.
关键词:XML Schema; Access control policies; XML Signature; Fine grained approach.
