An Attribute-Based Protection Model for JSON Documents
نویسندگان
چکیده
There has been considerable research in specifying authorization policies for XML documents. Most of these approaches consider only hierarchical structure of underlying data. They define authorization policies by directly identifying XML nodes in the policies. These approaches work well for hierarchical structure but are not suitable for other required characteristics we identify in this paper as semantical association and scatteredness. This paper presents an attribute based protection model for JSON documents. We assign security-label attribute values to JSON elements and specify authorization policies using these values. By using securitylabel attribute, we leverage semantical association and scatteredness properties. Our protection mechanism defines two types of policies called authorization and labeling policies. We present an operational model to specify authorization policies and different models for defining labeling policies. Finally, we demonstrate a proof-of-concept for the proposed models in the Swift service of OpenStack IaaS cloud.
منابع مشابه
SQL for NoSQL Databases: Deja Vu (Part 2)
Providing a query interface for querying " schema-less " JSON documents using SQL as declarative query language [1] is finally gaining momentum (e.g. [4], [5]). The approach proposed in [2] called JSON SQL, however, represents an alternative approach as it adheres to the following principles: • extends the SQL 92 grammar ([3]) without changing the existing grammar rules, but by strictly adding ...
متن کاملWeb Data Management Introduction to the COUCHDB document database
For personal use only, not for distribution. Contents This PiP chapter proposes exercises and projects based on COUCHDB, a recent database system which relies on many of the concepts presented so far in this book. In brief: 1. COUCHDB adopts a semi-structured data model, based on the JSON (JavaScript Object Notation) format; JSON offers a lightweight alternative to XML; 2. a database in COUCHDB...
متن کاملFrom XML Schema to JSON Schema: Translation with CHR
Despite its rising popularity as data format especially for web services, the software ecosystem around the JavaScript Object Notation (JSON) is not as widely distributed as that of XML. For both data formats there exist schema languages to specify the structure of instance documents, but there is currently no opportunity to translate already existing XML Schema documents into equivalent JSON S...
متن کاملThe JavaScript Object Notation (JSON) Data Interchange Format
JavaScript Object Notation (JSON) is a lightweight, text-based, language-independent data interchange format. It was derived from the ECMAScript Programming Language Standard. JSON defines a small set of formatting rules for the portable representation of structured data. This document removes inconsistencies with other specifications of JSON, repairs specification errors, and offers experience...
متن کاملA combination of semantic and attribute-based access control model for virtual organizations
A Virtual Organization (VO) consists of some real organizations with common interests, which aims to provide inter organizational associations to reach some common goals by sharing their resources with each other. Providing security mechanisms, and especially a suitable access control mechanism, which enforces the defined security policy is a necessary requirement in VOs. Since VO is a complex ...
متن کامل