On specifying security policies for Web documents with an XML-based language

Proceedings of Sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001)

Volumn , Issue , 2001, Pages 57-65

  Bertino, Elisa ^a   Castano, Silvana ^a   Ferrari, Elena ^a  

^a UNIVERSITY OF MILAN   (Italy)

Author keywords

Access control; Security policies; Subject credentials; XML

Indexed keywords

INFORMATION DISSEMINATION; SERVERS; WEBSITES; XML;

WEB DOCUMENTS;

SECURITY OF DATA;

EID: 0035791550     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/373256.373264     Document Type: Conference Paper

References (16)

1. E. Bertino, S. Castano, E. Ferrari and M. Mesiti. Specifying and Enforcing Access Control Policies for XML Document Sources. World Wide Web Journal, Baltzer Science Publishers, 3(3), 2000.
2. E. Bertino, S. Castano, and E. Ferrari. Securing XML Documents: the Author-X Project Demonstration. In Proc. of the SIGMOD 2001 Conferece, Santa Barbara (CA), May 2001.
3. E. Bertino, S. Castano, and E. Ferrari. Author-X: a Comprehensive System for Securing XML Documents. Techical Report, DSI - University of Milano, submitted for publication.
4. M. Blaze, J. Feigenbaum, J. Lacy. Decentralized Trust Management. IEEE Conf. on Security and Privacy, Oakland, CA, May, 1996.
5. S. Castano, M.G. Fugini, G. Martella, P. Samarati. Database Security. Addison-Wesley, 1995.
6. S. Castano and V. De Antonellis. A Discovery-based Approach to Database Ontology Design. Distributed and Parallel Databases - Special Issue on Ontologies and Databases, 7(1), 1999.
7. H. Gladney and J. Lotspiech. Safeguarding Digital Library Contents and Users: Assuring Convenient Security and Data Quality. D-lib Magazine, May 1997.
8. A. Herzberg, Y. Mass. Relying Party Credentials Framework. in Proc. of RSA Conference, San Francisco, CA, April 2001.
9. A. Herzberg, Y. Mass, J. Mihaeli. Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers. in Proc. of IEEE Symposium on Security and Privacy, Oakland, CA, May, 2000.
10. C. Geuer Pollmann. The XML Security Page. http://www.nue.et-inf.uni-siegen.de/g̃euer-pollmann/xml_security.html
11. J. Park, R. Sandhu and G.J. Ahn. Secure Attribute Services on the Web. ACM TISSEC (to appear), 2000.
12. W. Stallings. Network Security Essentials: Applications and Standars. Prentice Hall, 2000.
13. W. Winsborough, K. Seamons, V. Jones. Automated Trust Negotiation. DARPA Information Survivability Conference and Exposition (DISCEX'2000), January, 2000.
14. M. Winslett, N. Ching, V. Jones, I. Slepchin. Using Digital Credentials on the World Wide Web. Journal of Computer Security, 7, 1997.
15. Word Wide Web Consortium. XML Path Language (Xpath), 1.0, 1999. W3C Recommendation. Available at http://www.w3.org/TR/xpath.
16. Word Wide Web Consortium. Extensible Markup Language (XML) 1.0, 1998. Available at http://www.w3.org/TR/REC-xml