Abstract
The Extensible Markup Language (XML) is utilised in many Internet applications we are using today. However, as with many computing technologies, vulnerabilities exist in XML that can allow for malicious and unauthorised use. Applications that utilise XML are therefore susceptible to security faults if they do not provide their own methods. Our research focuses on developing a formal language which can provide access control to information stored in XML formatted documents. This formal language will have the capacity to reason if access to an XML document should be allowed. Our language, Axml(T), allows for the specification of authorisations on XML documents based on the popular Role-based Access Control model. Temporal interval reasoning is the study of logically representing time intervals and relationships between them. As part of our research, we have also included this aspect in our language Axml(T) because we believe it will allow us to specify even more powerful access control authorisations.
| Original language | English |
|---|---|
| Title of host publication | Information Security and Cryptology: 5th International Conference, Inscrypt 2009, Beijing, China, December 12-15, 2009 : Revised Selected Papers |
| Publisher | Springer |
| Pages | 443-457 |
| Number of pages | 15 |
| ISBN (Print) | 3642163416 |
| Publication status | Published - 2009 |
| Event | China Internaitonal Conference on Information Security and Cryptology - Duration: 1 Jan 2009 → … |
Conference
| Conference | China Internaitonal Conference on Information Security and Cryptology |
|---|---|
| Period | 1/01/09 → … |
Keywords
- XML (document markup language)
- computer security