{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:39:29Z","timestamp":1750307969169,"version":"3.41.0"},"reference-count":56,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2008,1,1]],"date-time":"2008-01-01T00:00:00Z","timestamp":1199145600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Inf. Syst. Secur."],"published-print":{"date-parts":[[2008,1]]},"abstract":"<jats:p>The erosion of trust put in traditional database servers and in Database Service Providers and the growing interest for different forms of selective data dissemination are different factors that lead to move the access-control from servers to clients. Different data encryption and key dissemination schemes have been proposed to serve this purpose. By compiling the access-control rules into the encryption process, all these methods suffer from a static way of sharing data. With the emergence of hardware security elements on client devices, more dynamic client-based access-control schemes can be devised. This paper proposes a tamper-resistant client-based XML access-right controller supporting flexible and dynamic access-control policies. The access-control engine is embedded in a hardware-secure device and, therefore, must cope with specific hardware resources. This engine benefits from a dedicated index to quickly converge toward the authorized parts of a potentially streaming XML document. Pending situations (i.e., where data delivery is conditioned by predicates, which apply to values encountered afterward in the document stream) are handled gracefully, skipping, whenever possible the pending elements and reassembling relevant parts when the pending situation is solved. Additional security mechanisms guarantee that (1) the input document is protected from any form of tampering and (2) no forbidden information can be gained by replay attacks on different versions of the XML document and of the access-control rules. Performance measurements on synthetic and real datasets demonstrate the effectiveness of the approach. Finally, the paper reports on two experiments conducted with a prototype running on a secured hardware platform.<\/jats:p>","DOI":"10.1145\/1284680.1284684","type":"journal-article","created":{"date-parts":[[2008,2,8]],"date-time":"2008-02-08T15:32:16Z","timestamp":1202484736000},"page":"1-37","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Dynamic access-control policies on XML encrypted data"],"prefix":"10.1145","volume":"10","author":[{"given":"Luc","family":"Bouganim","sequence":"first","affiliation":[{"name":"INRIA Rocquencourt and PRiSM Laboratory, Le Chesnay Cedex, France; University of Versailles, Versailles Cedex, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Francois Dang","family":"Ngoc","sequence":"additional","affiliation":[{"name":"INRIA Rocquencourt and PRiSM Laboratory, Le Chesnay Cedex, France; University of Versailles, Versailles Cedex, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Philippe","family":"Pucheral","sequence":"additional","affiliation":[{"name":"INRIA Rocquencourt and PRiSM Laboratory, Le Chesnay Cedex, France; University of Versailles, Versailles Cedex, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2008,1,22]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1065167.1065182"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/357369.357372"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/375663.375730"},{"volume-title":"Proceedings of the 9th Extending Database Technology (EDBT) International Conference","author":"Arion A.","key":"e_1_2_1_4_1","unstructured":"Arion , A. , Bonifati , A. , Costa , G. , D'Aguanno , S. , Manolescu , I. , and Puglies , A . 2004. Efficient query evaluation over compressed data . In Proceedings of the 9th Extending Database Technology (EDBT) International Conference . Heraklion, Greece. Arion, A., Bonifati, A., Costa, G., D'Aguanno, S., Manolescu, I., and Puglies, A. 2004. Efficient query evaluation over compressed data. In Proceedings of the 9th Extending Database Technology (EDBT) International Conference. Heraklion, Greece."},{"key":"e_1_2_1_5_1","volume-title":"Worldwide USB smartcard developer contest","author":"Axalto","unstructured":"Axalto E-Gate. 2004. Worldwide USB smartcard developer contest . 2 nd ed. held at CTST , Washington, DC . http:\/\/www.egateopen.axalto.com. Axalto E-Gate. 2004. Worldwide USB smartcard developer contest. 2nd ed. held at CTST, Washington, DC. http:\/\/www.egateopen.axalto.com.","edition":"2"},{"key":"e_1_2_1_6_1","volume-title":"Worldwide Mobile Communication and Java CardTM developer contest","author":"Axalto Simagine","unstructured":"Axalto Simagine 2005. Worldwide Mobile Communication and Java CardTM developer contest . 6 th ed. held at 3GSM, Cannes , France . http:\/\/www.simagine.axalto.com. Axalto Simagine 2005. Worldwide Mobile Communication and Java CardTM developer contest. 6th ed. held at 3GSM, Cannes, France. http:\/\/www.simagine.axalto.com.","edition":"6"},{"key":"e_1_2_1_7_1","unstructured":"Axalto. SIMera---Classic SIM Card. http:\/\/www.axalto.com\/wireless\/classic.asp.  Axalto. SIMera---Classic SIM Card. http:\/\/www.axalto.com\/wireless\/classic.asp."},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/988672.988719"},{"volume-title":"Proceedings of the IEEE International Conference on Internet Computing.","author":"Bertino E.","key":"e_1_2_1_9_1","unstructured":"Bertino , E. , Castano , S. , and Ferrari , E . 2001. Securing XML documents with Author-X . In Proceedings of the IEEE International Conference on Internet Computing. Bertino, E., Castano, S., and Ferrari, E. 2001. Securing XML documents with Author-X. In Proceedings of the IEEE International Conference on Internet Computing."},{"volume-title":"Proceedings of the IEEE International Conference on Communication (ICC)","author":"Birget J.-C.","key":"e_1_2_1_10_1","unstructured":"Birget , J.-C. , Zou , X. , Noubir , G. , and Ramamurthy , B . 2001. Hierarchy-based access-control in distributed environments . In Proceedings of the IEEE International Conference on Communication (ICC) , Saint Petersbourg, Russia. Birget, J.-C., Zou, X., Noubir, G., and Ramamurthy, B. 2001. Hierarchy-based access-control in distributed environments. In Proceedings of the IEEE International Conference on Communication (ICC), Saint Petersbourg, Russia."},{"volume-title":"Proceedings of the 28th International Conference on Very Large Databases (VLDB)","author":"Bouganim B.","key":"e_1_2_1_11_1","unstructured":"Bouganim , B. and Pucheral , P . 2002. Chip-secured data access: Confidential data on untrusted servers . In Proceedings of the 28th International Conference on Very Large Databases (VLDB) , Hong Kong. Bouganim, B. and Pucheral, P. 2002. Chip-secured data access: Confidential data on untrusted servers. In Proceedings of the 28th International Conference on Very Large Databases (VLDB), Hong Kong."},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/1066157.1066276"},{"volume-title":"Proceedings of the 29th International Conference on Very Large Databases (VLDB)","author":"Buneman P.","key":"e_1_2_1_13_1","unstructured":"Buneman , P. , Grohe , M. , and Koch , C . 2003. Path queries on compressed XML . In Proceedings of the 29th International Conference on Very Large Databases (VLDB) , Berlin, Germany. Buneman, P., Grohe, M., and Koch, C. 2003. Path queries on compressed XML. In Proceedings of the 29th International Conference on Very Large Databases (VLDB), Berlin, Germany."},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1099554.1099575"},{"volume-title":"Proceedings of the 18th International Conference on Data Engineering (ICDE)","author":"Chan C.","key":"e_1_2_1_15_1","unstructured":"Chan , C. , Felber , P. , Garofalakis , M. , and Rastogi , R . 2002. Efficient filtering of XML documents with XPath expressions . In Proceedings of the 18th International Conference on Data Engineering (ICDE) , San Jose, CA. Chan, C., Felber, P., Garofalakis, M., and Rastogi, R. 2002. Efficient filtering of XML documents with XPath expressions. In Proceedings of the 18th International Conference on Data Engineering (ICDE), San Jose, CA."},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/344287.344297"},{"volume-title":"Proceedings of the 18th International Conference on Advanced Information Networking and Applications (AINA)","author":"Chang T.","key":"e_1_2_1_17_1","unstructured":"Chang , T. and Hwang , G . 2004. Using the extension function of XSLT and DSL to secure XML documents . In Proceedings of the 18th International Conference on Advanced Information Networking and Applications (AINA) , Fukuoka, Japan. Chang, T. and Hwang, G. 2004. Using the extension function of XSLT and DSL to secure XML documents. In Proceedings of the 18th International Conference on Advanced Information Networking and Applications (AINA), Fukuoka, Japan."},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/1031171.1031190"},{"volume-title":"Proceedings of the 28th International Conference on Very Large Databases (VLDB)","author":"Cho S.","key":"e_1_2_1_19_1","unstructured":"Cho , S. , Amer-Yahia , S. , Lakshmanan , L. , and Srivastava , D . 2002. Optimizing the secure evaluation of twig queries . In Proceedings of the 28th International Conference on Very Large Databases (VLDB) , Hong Kong. Cho, S., Amer-Yahia, S., Lakshmanan, L., and Srivastava, D. 2002. Optimizing the secure evaluation of twig queries. In Proceedings of the 28th International Conference on Very Large Databases (VLDB), Hong Kong."},{"key":"e_1_2_1_20_1","unstructured":"Computer Security Institute. 2003. CSI\/FBI computer crime and security survey. http:\/\/www.gocsi.com\/forms\/fbi\/pdf.html.  Computer Security Institute. 2003. CSI\/FBI computer crime and security survey. http:\/\/www.gocsi.com\/forms\/fbi\/pdf.html."},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/505586.505590"},{"key":"e_1_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/501983.502003"},{"volume-title":"Proceedings of the 20th IEEE International Conference on Data Engineering (ICDE)","author":"Diao Y.","key":"e_1_2_1_23_1","unstructured":"Diao , Y. and Franklin , M . 2003. High-performance XML filtering: An overview of filter . In Proceedings of the 20th IEEE International Conference on Data Engineering (ICDE) , Bangalore, India. Diao, Y. and Franklin, M. 2003. High-performance XML filtering: An overview of filter. In Proceedings of the 20th IEEE International Conference on Data Engineering (ICDE), Bangalore, India."},{"volume-title":"Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY)","author":"El Kalam A.","key":"e_1_2_1_24_1","unstructured":"El Kalam , A. , Benferhat , S. , Miege , A. , Baida , R. , Cuppens , F. , Saurel , C. , Balbiani , P. , Deswarte , Y. , and Trouessin , G . 2003. Organization based access-control . In Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY) . New York. El Kalam, A., Benferhat, S., Miege, A., Baida, R., Cuppens, F., Saurel, C., Balbiani, P., Deswarte, Y., and Trouessin, G. 2003. Organization based access-control. In Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY). New York."},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1007568.1007634"},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/1099554.1099576"},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1111348.1111351"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1042046.1042051"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/564691.564717"},{"volume-title":"Proceedings of the International Database Engineering and Applications Symposium (IDEAS)","author":"He J.","key":"e_1_2_1_30_1","unstructured":"He , J. and Wang , M . 2001. Cryptography and relational database management systems . In Proceedings of the International Database Engineering and Applications Symposium (IDEAS) , Grenoble, France. He, J. and Wang, M. 2001. Cryptography and relational database management systems. In Proceedings of the International Database Engineering and Applications Symposium (IDEAS), Grenoble, France."},{"volume-title":"Proceedings of the International Conference on Research in SmartCards.","author":"Henderson N. J.","key":"e_1_2_1_31_1","unstructured":"Henderson , N. J. , White , N. M. , and Hartel , P. H . 2001. iButton enrolement and verification requirements for the pressure sequence smartcard biometric . In Proceedings of the International Conference on Research in SmartCards. Henderson, N. J., White, N. M., and Hartel, P. H. 2001. iButton enrolement and verification requirements for the pressure sequence smartcard biometric. In Proceedings of the International Conference on Research in SmartCards."},{"key":"e_1_2_1_32_1","unstructured":"Hopcroft J. and Ullman J. 1979. Introduction to Automata Theory Languages and Computation. Addison-Wesley Reading MA.   Hopcroft J. and Ullman J. 1979. Introduction to Automata Theory Languages and Computation. Addison-Wesley Reading MA."},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/352600.352613"},{"key":"e_1_2_1_34_1","unstructured":"Menezes A. Oorschot P. and Vanstone S. 1996. Handbook of Applied Cryptography. CRC Press Boca Raton FL.   Menezes A. Oorschot P. and Vanstone S. 1996. Handbook of Applied Cryptography. CRC Press Boca Raton FL."},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.5555\/118209.118230"},{"key":"e_1_2_1_36_1","unstructured":"Microsoft Windows Microsoft Media 9. http:\/\/www.microsoft.com\/windows\/windowsmedia\/.  Microsoft Windows Microsoft Media 9. http:\/\/www.microsoft.com\/windows\/windowsmedia\/."},{"key":"e_1_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/543613.543623"},{"volume-title":"Proceedings of the 29th International Conference on Very Large Databases (VLDB)","author":"Miklau G.","key":"e_1_2_1_38_1","unstructured":"Miklau , G. and Suciu , D . 2003. Controlling access to published data using cryptography . In Proceedings of the 29th International Conference on Very Large Databases (VLDB) , Berlin, Germany. Miklau, G. and Suciu, D. 2003. Controlling access to published data using cryptography. In Proceedings of the 29th International Conference on Very Large Databases (VLDB), Berlin, Germany."},{"volume-title":"Proceedings of the IEEE International Conference on Data Engineering","author":"Ng W.","key":"e_1_2_1_39_1","unstructured":"Ng , W. , Ooi , B. , Tan , K. , and Zhou , A . 2003. Peerdb: A p2p-based system for distributed data sharing . In Proceedings of the IEEE International Conference on Data Engineering , Bangalore, India. Ng, W., Ooi, B., Tan, K., and Zhou, A. 2003. Peerdb: A p2p-based system for distributed data sharing. In Proceedings of the IEEE International Conference on Data Engineering, Bangalore, India."},{"key":"e_1_2_1_40_1","unstructured":"ODRL. The Open Digital Rights Language Initiative. http:\/\/odrl.net\/.  ODRL. The Open Digital Rights Language Initiative. http:\/\/odrl.net\/."},{"key":"e_1_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/872757.872810"},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1145\/507711.507723"},{"volume-title":"Proceedings of the 16th International Parallel and Distributed Processing Symposium (IPDPS), FL.","author":"Ray I.","key":"e_1_2_1_43_1","unstructured":"Ray , I. and Ray , I . 2002. Using compatible keys for secure multicasting in e-commerce . In Proceedings of the 16th International Parallel and Distributed Processing Symposium (IPDPS), FL. Ray, I. and Ray, I. 2002. Using compatible keys for secure multicasting in e-commerce. In Proceedings of the 16th International Parallel and Distributed Processing Symposium (IPDPS), FL."},{"key":"e_1_2_1_44_1","unstructured":"SAX Project. Simple API for XML. http:\/\/www.saxproject.org\/.  SAX Project. Simple API for XML. http:\/\/www.saxproject.org\/."},{"key":"e_1_2_1_45_1","volume-title":"Applied Cryptography","author":"Schneier B.","unstructured":"Schneier , B. 1996. Applied Cryptography , 2 nd ed., Wiley , New York . Schneier, B. 1996. Applied Cryptography, 2nd ed., Wiley, New York.","edition":"2"},{"key":"e_1_2_1_46_1","unstructured":"SmartRight. The SmartRight Content Protection System. http:\/\/www.smartright.org\/  SmartRight. The SmartRight Content Protection System. http:\/\/www.smartright.org\/"},{"key":"e_1_2_1_47_1","unstructured":"TCPA. Trusted computing platform alliance. http:\/\/www.trustedcomputing.org\/  TCPA. Trusted computing platform alliance. http:\/\/www.trustedcomputing.org\/"},{"volume-title":"Proceedings of the 18th International Conference on Data Engineering (ICDE)","author":"Tolani P.","key":"e_1_2_1_48_1","unstructured":"Tolani , P. and Haritsa , J . 2002. XGRIND: A query-friendly XML compressor . In Proceedings of the 18th International Conference on Data Engineering (ICDE) , San Jose, CA. Tolani, P. and Haritsa, J. 2002. XGRIND: A query-friendly XML compressor. In Proceedings of the 18th International Conference on Data Engineering (ICDE), San Jose, CA."},{"key":"e_1_2_1_49_1","unstructured":"ToXgene. The ToX XML Data Generator. http:\/\/www.cs.toronto.edu\/tox\/toxgene\/.  ToXgene. The ToX XML Data Generator. http:\/\/www.cs.toronto.edu\/tox\/toxgene\/."},{"key":"e_1_2_1_50_1","unstructured":"UW XML. UW XML Data Repository. http:\/\/www.cs.washington.edu\/research\/xmldatasets\/.  UW XML. UW XML Data Repository. http:\/\/www.cs.washington.edu\/research\/xmldatasets\/."},{"key":"e_1_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.5555\/1287369.1287446"},{"key":"e_1_2_1_52_1","unstructured":"W3C DOM. DOM: Document Object Model. http:\/\/www.w3.org\/DOM.  W3C DOM. DOM: Document Object Model. http:\/\/www.w3.org\/DOM."},{"key":"e_1_2_1_53_1","unstructured":"W3C PICS. PICS: Platform for Internet Content Selection. http:\/\/www.w3.org\/PICS.  W3C PICS. PICS: Platform for Internet Content Selection. http:\/\/www.w3.org\/PICS."},{"key":"e_1_2_1_54_1","unstructured":"W3C XMLENC. XML Encryption Requirements http:\/\/www.w3.org\/TR\/xml-encryption-req  W3C XMLENC. XML Encryption Requirements http:\/\/www.w3.org\/TR\/xml-encryption-req"},{"key":"e_1_2_1_55_1","unstructured":"XACML. OASIS eXtensible access-control Markup Language (XACML). http:\/\/docs.oasis-open.org\/xacml\/2.0\/access_control-xacml-2.0-core-spec-os.pdf.  XACML. OASIS eXtensible access-control Markup Language (XACML). http:\/\/docs.oasis-open.org\/xacml\/2.0\/access_control-xacml-2.0-core-spec-os.pdf."},{"key":"e_1_2_1_56_1","unstructured":"XRML. XrML eXtendible rights Markup Language. http:\/\/www.xrml.org\/  XRML. XrML eXtendible rights Markup Language. http:\/\/www.xrml.org\/"}],"container-title":["ACM Transactions on Information and System Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1284680.1284684","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1284680.1284684","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T14:58:16Z","timestamp":1750258696000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1284680.1284684"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2008,1]]},"references-count":56,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2008,1]]}},"alternative-id":["10.1145\/1284680.1284684"],"URL":"https:\/\/doi.org\/10.1145\/1284680.1284684","relation":{},"ISSN":["1094-9224","1557-7406"],"issn-type":[{"type":"print","value":"1094-9224"},{"type":"electronic","value":"1557-7406"}],"subject":[],"published":{"date-parts":[[2008,1]]},"assertion":[{"value":"2005-09-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2007-05-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2008-01-22","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}