A Rule-Based Relational XML Access Control Model in the Presence of Authorization Conflicts
This work addresses a specific security problem for database administrators and developers managing sensitive XML data in relational systems, but it appears incremental as it builds on existing XML access control models by adding conflict handling.
The paper tackled the challenge of enforcing fine-grained authorization policies for XML data stored in relational databases, which often have conflicting policies, by proposing a rule-based access control model that handles authorization conflicts with conditions, though no concrete performance numbers are provided.
There is considerable amount of sensitive XML data stored in relational databases. It is a challenge to enforce node level fine-grained authorization policies for XML data stored in relational databases which typically support table and column level access control. Moreover, it is common to have conflicting authorization policies over the hierarchical nested structure of XML data. There are a couple of XML access control models for relational XML databases proposed in the literature. However, to our best knowledge, none of them discussed handling authorization conflicts with conditions in the domain of relational XML databases. Therefore, we believe that there is a need to define and incorporate effective fine-grained XML authorization models with conflict handling mechanisms in the presence of conditions into relational XML databases. We address this issue in this study.