A Formal Language for Specifying Complex XML Authorisations with Temporal Constraints
نویسندگان
چکیده
The Extensible Markup Language (XML) is utilised in many Internet applications we are using today. However, as with many computing technologies, vulnerabilities exist in XML that can allow for malicious and unauthorised use. Applications that utilise XML are therefore susceptible to security faults if they do not provide their own methods. Our research focuses on developing a formal language which can provide access control to information stored in XML formatted documents. This formal language will have the capacity to reason if access to an XML document should be allowed. Our language, A , allows for the specification of authorisations on XML documents based on the popular Role-based Access Control model. Temporal interval reasoning is the study of logically representing time intervals and relationships between them. As part of our research, we have also included this aspect in our language A ) because we believe it will allow us to specify even more powerful access control authorisations.
منابع مشابه
A Formal Language for XML Authorisations Based on Answer Set Programming and Temporal Interval Logic Constraints
The Extensible Markup Language is susceptible to security breaches because it does not incorporate methods to protect the information it encodes. This work focuses on the development of a formal language that can provide role-based access control to information stored in XML formatted documents. This language has the capacity to reason whether access to an XML document should be allowed. The la...
متن کاملSpecifying Distributed Information Systems: Fundamentals of an Object-Oriented Approach Using Distributed Temporal Logic
We present fundamentals of an approach to object-oriented specification of distributed information systems. We do not assume global time for concurrent object systems. For specifying those systems we propose Dtl, a distributed temporal logic. The main contribution is that Dtl is capable of specifying complex constraints about the behavior of distributed systems and communication between concurr...
متن کاملXML Retrieval with a Natural Language Interface
Effective information retrieval in XML documents requires the user to have good knowledge of document structure and of some formal query language. XML query languages like XPath and XQuery are too complex to be considered for use by end users. We present an approach to XML query processing that supports the specification of both textual and structural constraints in natural language. We impleme...
متن کاملDTD++ 2.0: Adding support for co-constraints
In this paper we present an evolution of the DTD++ schema language for XML documents. The original DTD++ language provided support for a large and significant subset of XML Schema while maintaining a syntax closely resembling DTDs: thus the expressive power of XML Schema and the readability of DTDs were both supported in a modular architecture that could rely on a number of validating engine fo...
متن کاملFormal Specification and Verification of XML-Based Business Domain Models
The rapidly growing use of XML in the development of business to business (B2B) applications requires new approaches in building enterprise application infrastructures. In this field the modeling of business domain semantics, thus focusing on the user’s perception of data, in contrast to physical data representation, is gathering more and more importance. It is increasingly important to provide...
متن کامل