Security Analysis of Cryptographically Controlled Access to XML Documents

M Abadi; B Warinschi

doi:10.1145/1065167.1065182

Security Analysis of Cryptographically Controlled Access to XML Documents

M Abadi, B Warinschi

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

10 Citations (Scopus)

Abstract

Some promising recent schemes for XML access control employ encryption for implementing security policies on published data, avoiding data duplication. In this paper we study one such scheme, due to Miklau and Suciu. That scheme was introduced with some intuitive explanations and goals, but without precise definitions and guarantees for the use of cryptography (specifically, symmetric encryption and secret sharing). We bridge this gap in the present work. We analyze the scheme in the context of the rigorous models of modern cryptography. We obtain formal results in simple, symbolic terms close to the vocabulary of Miklau and Suciu. We also obtain more detailed computational results that establish security against probabilistic polynomial-time adversaries. Our approach, which relates these two layers of the analysis, continues a recent thrust in security research and may be applicable to a broad class of systems that rely on cryptographic data protection.

Translated title of the contribution	Security analysis of cryptographically controlled access to XML documents
Original language	English
Title of host publication	Symposium on Principles of Database Systems - PODS 2005
Publisher	Association for Computing Machinery
Pages	108 - 117
Number of pages	10
Volume	-
ISBN (Print)	1595930620
DOIs	https://doi.org/10.1145/1065167.1065182
Publication status	Published - 2005

Bibliographical note

Conference Organiser: ACM

Access to Document

10.1145/1065167.1065182

http://doi.acm.org/10.1145/1065167.1065182

Handle.net

Persistent link

Cite this

@inproceedings{776816f13705477ea88da40fc28cbf84,

title = "Security Analysis of Cryptographically Controlled Access to XML Documents",

abstract = "Some promising recent schemes for XML access control employ encryption for implementing security policies on published data, avoiding data duplication. In this paper we study one such scheme, due to Miklau and Suciu. That scheme was introduced with some intuitive explanations and goals, but without precise definitions and guarantees for the use of cryptography (specifically, symmetric encryption and secret sharing). We bridge this gap in the present work. We analyze the scheme in the context of the rigorous models of modern cryptography. We obtain formal results in simple, symbolic terms close to the vocabulary of Miklau and Suciu. We also obtain more detailed computational results that establish security against probabilistic polynomial-time adversaries. Our approach, which relates these two layers of the analysis, continues a recent thrust in security research and may be applicable to a broad class of systems that rely on cryptographic data protection.",

author = "M Abadi and B Warinschi",

note = "Conference Organiser: ACM",

year = "2005",

doi = "10.1145/1065167.1065182",

language = "English",

isbn = "1595930620",

volume = "-",

pages = "108 -- 117",

booktitle = "Symposium on Principles of Database Systems - PODS 2005",

publisher = "Association for Computing Machinery",

address = "United States",

}

TY - GEN

T1 - Security Analysis of Cryptographically Controlled Access to XML Documents

AU - Abadi, M

AU - Warinschi, B

N1 - Conference Organiser: ACM

PY - 2005

Y1 - 2005

N2 - Some promising recent schemes for XML access control employ encryption for implementing security policies on published data, avoiding data duplication. In this paper we study one such scheme, due to Miklau and Suciu. That scheme was introduced with some intuitive explanations and goals, but without precise definitions and guarantees for the use of cryptography (specifically, symmetric encryption and secret sharing). We bridge this gap in the present work. We analyze the scheme in the context of the rigorous models of modern cryptography. We obtain formal results in simple, symbolic terms close to the vocabulary of Miklau and Suciu. We also obtain more detailed computational results that establish security against probabilistic polynomial-time adversaries. Our approach, which relates these two layers of the analysis, continues a recent thrust in security research and may be applicable to a broad class of systems that rely on cryptographic data protection.

AB - Some promising recent schemes for XML access control employ encryption for implementing security policies on published data, avoiding data duplication. In this paper we study one such scheme, due to Miklau and Suciu. That scheme was introduced with some intuitive explanations and goals, but without precise definitions and guarantees for the use of cryptography (specifically, symmetric encryption and secret sharing). We bridge this gap in the present work. We analyze the scheme in the context of the rigorous models of modern cryptography. We obtain formal results in simple, symbolic terms close to the vocabulary of Miklau and Suciu. We also obtain more detailed computational results that establish security against probabilistic polynomial-time adversaries. Our approach, which relates these two layers of the analysis, continues a recent thrust in security research and may be applicable to a broad class of systems that rely on cryptographic data protection.

U2 - 10.1145/1065167.1065182

DO - 10.1145/1065167.1065182

M3 - Conference Contribution (Conference Proceeding)

SN - 1595930620

VL - -

SP - 108

EP - 117

BT - Symposium on Principles of Database Systems - PODS 2005

PB - Association for Computing Machinery

ER -

Security Analysis of Cryptographically Controlled Access to XML Documents

Abstract

Bibliographical note

Access to Document

Handle.net

Fingerprint

Cite this