A secure solution for commercial digital libraries

Online Information Review

Volumn 27, Issue 3, 2003, Pages 147-159

  Yagüe, Mariemma I ^a   Maña, Antonio ^a   López, Javier ^a   Pimentel, Ernesto ^a   Troya, José M ^a  

^a UNIVERSITY OF MÁLAGA   (Spain)

Author keywords

Data security; Digital libraries; Distributed computing; Distribution requirements planning; Systems management

Indexed keywords

COMPUTER SOFTWARE; CONTROL SYSTEMS; DISTRIBUTED COMPUTER SYSTEMS; SECURITY OF DATA; XML;

ACCESS CONTROL;

DIGITAL LIBRARIES;

EID: 0038681621     PISSN: 14684527     EISSN: None     Source Type: Journal    
DOI: 10.1108/14684520310481418     Document Type: Article

References (17)

1. Baldonado, M., Chang, K., Gravano, L.P. and Paepcke, A. (1997), “The Stanford Digital Library metadata architecture”, International Journal of Digital Libraries, Vol. 1 No. 2, pp. 108-121.
2. Bertino, E., Castano, S. and Ferrari, E. (2001), “Securing XML documents with Author-X”, IEEE Internet Computing, Vol. 5 No. 3, pp. 21-31.
3. Chadwick, D.W. and Otenko, A. (2002), “RBAC policies in XML for X.509 based privilege management”, in Ed. Ghonaimy, M.A., Ed. El-Hadidi, M.T. and Ed. Aslan, H.K. (Eds), Security in the Information Society: Visions and Perspectives, Kluwer Academic Publishers, Dordrecht, pp. 39-54, available at: http://sec.isi.salford.ac.uk/download/Sec2002Final.pdf
4. Coleman, A. (2002), “Metadata rules the world: what else must we know about metadata?”, available at: www.alexandria.ucsb.edu/ acoleman/mrworld.html
5. Damiani, E., De Capitani di Vimercati, S., Paraboschi, S. and Samarati, P. (2001), “Controlling access to XML documents”, IEEE Internet Computing, Vol. 5 No. 6, pp. 18-28.
6. Damiani, E., De Capitani di Vimercati, S., Paraboschi, S. and Samarati, P. (2002), “A fine-grained access control system for XML documents”, ACM Transactions on Information and System Security (TISSEC), Vol. 5 No. 2, pp. 169-202.
7. Fayad, A., Jajodia, S., Faatz, D.B. and Doshi, V. (2001), “Going beyond MAC and DAC using mobile policies”, in Ed. Dupuy, M. and Ed. Paradinas, P. (Eds), Trusted Information: The New Decade Challenge, Kluwer Academic Publishers, Dordrecht, pp. 245-260.
8. ITU (2000), “Recommendation X.509 – information technology – open systems interconnection – the directory: public-key and attribute certificate frameworks”, International Telecommunication Union, available at: www.itu.int/rec/ recommendation.asp?type=items&lang= E&parent=T-REC-X.509-200003-I
9. Janée, G. and Frew, J. (2002), “The ADEPT digital library architecture”, Proceedings of the 2nd ACM/IEEE-CS Joint Conference on Digital Libraries, ACM Press, Portland, OR, pp. 342-350, available at: www.esm.ucsb.edu/fac_staff/fac/frew/cv/pubs/2002_ADEPT_architecture.pdf
10. Ketchpel, S., Garcia-Molina, H. and Paepcke, A. (1997), “Shopping models: a flexible architecture for information commerce”, Proceedings of the 2nd ACM International Conference on Digital Libraries, ACM Press, Portland, OR, pp. 65-74.
11. Kudo, M. and Hada, S. (2000), “XML document security based on provisional authorisation”, Proceedings of the 7th ACM Conference on Computer and Communications Security, ACM Press, Portland, OR, pp. 87-96.
12. López, J., Maña, A. and Yagüe, M.I. (2002a), “XML-based distributed access control system”, in Ed. Bauknecht, K., Ed. Tjoa, A.M. and Ed. Quirchmayr, G. (Eds), Proceedings of the 3rd International Conference on E-commerce and Web Technologies, Springer-Verlag, Berlin, pp. 203-213.
13. López, J., Maña, A., Pimentel, E., Troya, J.M. and Yagüe, M.I. (2002b), “Access control infrastructure for digital objects”, in Ed. Deng, R.H., Ed. Qing, S., Ed. Bao, F. and Ed. Zhou, J. (Eds), Proceedings of the 4th International Conference on Information and Communications Security, Lecture Notes in Computer Science 2513, Springer-Verlag, Berlin, pp. 399-410.
14. McCollum, C.J., Messing, J.R. and Notargiacomo, L. (1990), “Beyond the pale of MAC and DAC: defining new forms of access control”, Proceedings of the IEEE Symposium on Security and Privacy, IEEE Computer Society Press, Los Alamitos, CA, pp. 190-200.
15. Maña, A. and Pimentel, E. (2001), “An efficient software protection scheme”, in Ed. Dupuy, M. and Ed. Paradinas, P. (Eds), Trusted Information: The New Decade Challenge, Kluwer Academic Publishers, Dordrecht, pp. 385-402.
16. Thompson, M., Essiari, A. and Mudumbai, S. (2003), “Certificate-based authorisation policy in a PKI environment”, submitted to ACM Transactions on Information and System Security, August.
17. Yagüe, M.I. (2002), “On the suitability of existing access control and DRM languages for mobile policies”, Department of Computer Science Technical Report nb. LCC-ITI-2002/10, University of Málaga, Malaga.