Cryptographic Access Control in XML Data
by
Colin Pop
More and more businesses share documents and information these days electronically. XML emerged lately as the format of choice for exchanging data via the internet over connections with different levels of security. The goal of this research was to enforce access control on published XML documents using cryptography. In this framework the owner publishes a single data instance, which is partially encrypted, and which enforces all access control policies. Among the challenges posed by this objective was finding an XQuery engine with updating capabilities that would satisfy the updating, normalization and protection needs proposed by the project. The XQuery engines currently available do not provide the capabilities required by the logical "protection model" proposed, consequently part of my work was focused on finding ways to integrate existing tools with the needs of the project. Another challenge I have focused on was implementing encryption functions that would allow the owner to describe complex access scenarios. In this talk I will describe the application of this tool, the normalization and protection process for the XML tree and also the encryption process implemented.
Advised by Dan Suciu
CSE 403
Wednesday
March 8, 2006
3:30 - 4:20 pm