ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Controlled and cooperative updates of XML documents in byzantine and failure-prone distributed systems
Full text PdfPdf (1.32 MB)
Source ACM Transactions on Information and System Security (TISSEC) archive
Volume 9 ,  Issue 4  (November 2006) table of contents
Pages: 421 - 460  
Year of Publication: 2006
ISSN:1094-9224
Authors
Giovanni Mella  University of Milano, Italy
Elena Ferrari  University of Insubria, Varese, Italy
Elisa Bertino  Purdue University, Lafayette, In
Yunhua Koglin  Purdue University, Lafayette, In
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 3,   Downloads (12 Months): 50,   Citation Count: 1
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1187441.1187443
What is a DOI?

ABSTRACT

This paper proposes an infrastructure and related algorithms for the controlled and cooperative updates of XML documents. Key components of the proposed system are a set of XML-based languages for specifying access-control policies and the path that the document must follow during its update. Such path can be fully specified before the update process begins or can be dynamically modified by properly authorized subjects while being transmitted. Our approach is fully distributed in that each party involved in the process can verify the correctness of the operations performed until that point on the document without relying on a central authority. More importantly, the recovery procedure also does not need the participation of a central authority. Our approach is based on the use of some special control information that is transmitted together with the document and a suite of protocols. We formally specify the structure of such control information and the protocols. We also analyze security and complexity of the proposed protocols.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

1
Elisa Bertino , Silvana Castano , Elena Ferrari, On specifying security policies for web documents with an XML-based language, Proceedings of the sixth ACM symposium on Access control models and technologies, p.57-65, May 2001, Chantilly, Virginia, United States  [doi>10.1145/373256.373264]
2
Elisa Bertino , Elena Ferrari, Secure and selective dissemination of XML documents, ACM Transactions on Information and System Security (TISSEC), v.5 n.3, p.290-331, August 2002  [doi>10.1145/545186.545190]
 
3
E. Bertino , E. Ferrari , G. Mella, An approach to cooperative updates of XML documents in distributed systems, Journal of Computer Security, v.13 n.2, p.191-242, March 2005
4
Bintou Kane , Hong Su , Elke A. Rundensteiner, Consistently updating XML documents using incremental constraint check queries, Proceedings of the 4th international workshop on Web information and data management, November 08-08, 2002, McLean, Virginia, USA  [doi>10.1145/584931.584934]
 
5
Yunhua Koglin , Giovanni Mella , Elisa Bertino , Elena Ferrari, An Update Protocol for XML Documents in Distributed and Cooperative Systems, Proceedings of the 25th IEEE International Conference on Distributed Computing Systems (ICDCS'05), p.314-323, June 06-10, 2005  [doi>10.1109/ICDCS.2005.12]
6
Leslie Lamport , Robert Shostak , Marshall Pease, The Byzantine Generals Problem, ACM Transactions on Programming Languages and Systems (TOPLAS), v.4 n.3, p.382-401, July 1982  [doi>10.1145/357172.357176]
7
Chung-Hwan Lim , Seog Park , Sang H. Son, Access control of XML documents considering update operations, Proceedings of the 2003 ACM workshop on XML security, October 31-31, 2003, Fairfax, Virginia  [doi>10.1145/968559.968568]
 
8
Dahlia Malkhi , Yishay Mansour , Michael K. Reiter, On Diffusing Updates in a Byzantine Environment, Proceedings of the 18th IEEE Symposium on Reliable Distributed Systems, p.134, October 18-21, 1999
9
Dahlia Malkhi , Michael Reiter, Byzantine quorum systems, Proceedings of the twenty-ninth annual ACM symposium on Theory of computing, p.569-578, May 04-06, 1997, El Paso, Texas, United States  [doi>10.1145/258533.258650]
 
10
Malkhi, D., Reiter, M. K., Rodeh, O., and Sella, Y. 2001a. Efficient update diffusion in byzantine environments. In Proceedings of the 20th IEEE Symposium on Reliable Distributed Systems. New Orleans. IEEE Computer Society, Washington, DC. 90--98.
 
11
Dahlia Malkhi , Michael K. Reiter , Avishai Wool , Rebecca N. Wright, Probabilistic quorum systems, Information and Computation, v.170 n.2, p.184-206, November 1, 2001  [doi>10.1006/inco.2001.3054]
 
12
Mella, G. 2004. Distributed and cooperative updates of xml documents. Ph.D. thesis, University of Milano, DICO Department, Milano, Italy. Available at: http://homes.dico.unimi.it/dbandsec/mellagiovanni.
 
13
Pollmann, C. G. 2003. The xml security page. Availabe at: http://www.dcs.uni-siegen.de/geuer-pollmann/xml_security.html.
14
Michael K. Reiter, Secure agreement protocols: reliable and atomic group multicast in rampart, Proceedings of the 2nd ACM Conference on Computer and communications security, p.68-80, November 1994, Fairfax, Virginia, United States  [doi>10.1145/191177.191194]
 
15
Michael K. Reiter, A Secure Group Membership Protocol, IEEE Transactions on Software Engineering, v.22 n.1, p.31-42, January 1996  [doi>10.1109/32.481515]
16
Igor Tatarinov , Zachary G. Ives , Alon Y. Halevy , Daniel S. Weld, Updating XML, Proceedings of the 2001 ACM SIGMOD international conference on Management of data, p.413-424, May 21-24, 2001, Santa Barbara, California, United States
 
17
Thuraisingham, B., Gupta, A., Bertino, E., and Ferrari, E. 2002. Collaborative commerce and knowledge management. Knowledge and Process Management 9, 1, 43--53.
 
18
Vitenberg, R., Keidar, I., Chockler, G., and Dolev, D. 1999. Group communication specifications: A comprehensive study. In Tech. report CS9931. Comp. Sci. Inst., The Hebrew University of Jerusalem and MIT Technical Report MIT-LCS-TR-790.
 
19
W3C. 1999. XML Path Language (Xpath) 1.0. Availabe at: http://www.w3.org/TR/1999/REC-xpath-19991116.

CITED BY
Ragib Hasan , Radu Sion , Marianne Winslett, The case of the fake picasso: preventing history forgery with secure provenance, Proccedings of the 7th conference on File and stroage technologies, p.1-14, February 24-27, 2009, San Francisco, California

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.4 Distributed Systems

Additional Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Authentication; Access controls

  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.7 Database Administration
          Subjects: Security, integrity, and protection


General Terms:
Management, Reliability, Security


Keywords:
Byzantine and distributed systems, XML documents, policy languages, updates

Collaborative Colleagues:
Giovanni Mella: colleagues
Elena Ferrari: colleagues
Elisa Bertino: colleagues
Yunhua Koglin: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player