Distributed access control for XML document centric collaborations

Rahaman, Mohammad Ashiqur;Roudier, Yves;Schaad, Andreas
EDOC 2008, 12th IEEE International Conference on Enterprise Distributed Object Computing, September 15-19, 2008, München, Germany

This paper introduces a distributed and fine grained access control mechanism based on encryption for XML document  centric collaborative applications. This mechanism also makes it possible to simultaneously protect the confidentiality of a document and to verify its authenticity and integrity, as well to trace its updates. The enforcement of access control is distributed to participants and does not rely on a central authority. Novel aspects of the proposed framework include the adoption of a decentralized key management scheme to support the client-based enforcement of the access control policy. This scheme is driven by the expression of access patterns of interest of the participants over document parts to determine the keys required. A lazy rekeying protocol is also defined to accommodate the delegation of access control decisions that in particular reduces rekeying latency when faced with the addition and removal of participants.


DOI
Type:
Conference
City:
München
Date:
2008-09-15
Department:
Digital Security
Eurecom Ref:
2690
Copyright:
© 2008 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.
See also:

PERMALINK : https://www.eurecom.fr/publication/2690