Title :
Distributed Access Control For XML Document Centric Collaborations
Author :
Rahaman, Mohammad Ashiqur ; Roudier, Yves ; Schaad, Andreas
Author_Institution :
SAP Res., Mougins
Abstract :
This paper introduces a distributed and fine grained access control mechanism based on encryption for XML document centric collaborative applications. This mechanism also makes it possible to simultaneously protect the confidentiality of a document and to verify its authenticity and integrity, as well to trace its updates. The enforcement of access control is distributed to participants and does not rely on a central authority. Novel aspects of the proposed framework include the adoption of a decentralized key management scheme to support the client-based enforcement of the access control policy. This scheme is driven by the expression of access patterns of interest of the participants over document parts to determine the keys required. A lazy rekeying protocol is also defined to accommodate the delegation of access control decisions that in particular reduces rekeying latency when faced with the addition and removal of participants.
Keywords :
XML; authorisation; cryptography; document handling; XML document centric collaborations; access control decisions; central authority; client-based enforcement; decentralized key management scheme; distributed access control; fine grained access control mechanism; rekeying latency; rekeying protocol; Access control; Access protocols; Collaborative work; Cryptographic protocols; Cryptography; Distributed computing; International collaboration; Protection; Security; XML; Access Control; Cryptography; Delegation; XML;
Conference_Titel :
Enterprise Distributed Object Computing Conference, 2008. EDOC '08. 12th International IEEE
Conference_Location :
Munich
Print_ISBN :
978-0-7695-3373-5
DOI :
10.1109/EDOC.2008.31
