XML-based specification for web services document security

Computer

Volumn 37, Issue 4, 2004, Pages 41-49

  Bhatti, Rafae ^a   Bertino, Elisa ^a   Ghafoor, Arif ^a   Joshi, James B D ^b  

^a PURDUE UNIVERSITY   (United States)

^b UNIVERSITY OF PITTSBURGH   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER ARCHITECTURE; COMPUTER HARDWARE DESCRIPTION LANGUAGES; COMPUTER SOFTWARE; DIGITAL LIBRARIES; ELECTRONIC COMMERCE; INFORMATION DISSEMINATION; NETWORK PROTOCOLS; SECURITY OF DATA; SEMANTICS; WORLD WIDE WEB;

ACCESS CONTROL MODULE; DOCUMENT CLASSIFICATION MODULE; DOCUMENT COMPOSITION MODULE; ROLE-BASED ACCESS CONTROL MODEL; SESSION MANAGEMENT MODULE; WEB SERVICES;

XML;

EID: 1942532238     PISSN: 00189162     EISSN: None     Source Type: Trade Journal    
DOI: 10.1109/MC.2004.1297300     Document Type: Article

References (10)

1. E. Bertino et al., "Controlled Access and Dissemination of XML Documents" Proc. Workshop Web Information and Data Management, ACM Press, 1999, pp. 22-27.
2. E. Damiani et al., "A Fine-Grained Access Control System for XML Documents," ACM Trans. Information and System Security (TISSEC), vol. 5, no. 2, ACM Press, 2002, pp. 169-202.
3. J.Y. Chung, K.J. Lin, and R.G. Mathieu, "Guest Editor's Introduction - Web Services Computing: Advancing Software Interoperability," Computer Oct. 2003, pp. 35-37.
4. J.B.D. Joshi et al., "Security Models for Web-Based Applications," Comm. ACM, Feb. 2001, p. 38-72.
5. R.S. Sandhu et al., "Role-Based Access Control Models," Computer, Feb. 1996, pp. 38-47.
6. S.L. Osborn, R. Sandhu, and Q. Munawer, "Configuring Role-Based Access Control to Enforce Mandatory and Discretionary Access Control Policies," ACM Trans. Information and System Security (TISSEC), vol. 3, no. 2, ACM Press, 2000, pp. 85-106.
7. S. Hada and M. Kudo, "XML Access Control Language: Provisional Authorization for XML Documents," 16 Oct. 2000, Tokyo Research Laboratory, IBM Research.
8. R. Bhatti et al., Access Control in Dynamic XML-Based Web Services with X-RBAC, CERIAS tech. report 2003-36.
9. D.F. Ferraiolo et al., "Proposed NIST Standard for Role-Based Access Control," ACM Trans. Information and System Security (TISSEC), vol. 4, no. 3, ACM Press, 2001, pp. 224-274.
10. H. Chen, "A Machine Learning Approach to Document Retrieval: An Overview and an Experiment," Proc. 27th Hawaii Int'l Conf. System Sciences vol. 3, IEEE CS Press, 1994, pp. 631-640.