A structure preserving approach for securing XML documents

Mohamed Nabeel, Elisa Bertino

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

With the widespread adoption of XML as the message format to disseminate content over distributed systems including Web Services and Publish-Subscribe systems, different methods have been proposed for securing messages. We focus on a subset of such systems where incremental updates are disseminated. The goal of this paper is to develop an approach for disseminating only the updated or accessible portions of XML content while assuring confidentiality and integrity at message level. While sending only the updates greatly reduces the bandwidth requirements, it introduces the challenge of assuring security efficiently for partial messages disseminated to intermediaries and clients. We propose a novel localized encoding scheme based on conventional cryptographic functions to enforce security for confidentiality and content integrity at the granularity of XML node level. We also address structural integrity with respect to the complete XML document to which clients have access. Our solution takes every possible measure to minimize indirect information leakage by making the rest of the structure of XML documents to which intermediaries and clients do not have access oblivious. The experimental results show that our scheme is superior to conventional techniques of securing XML documents when the percentage of update with respect to original documents is low.

Original languageEnglish
Title of host publicationProceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007
Pages8-15
Number of pages8
DOIs
Publication statusPublished - 2007
Externally publishedYes
Event3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007 - White Plains, NY, United States
Duration: 12 Nov 200715 Nov 2007

Other

Other3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007
CountryUnited States
CityWhite Plains, NY
Period12/11/0715/11/07

Fingerprint

XML
Structural integrity
Web services
Bandwidth

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications
  • Software

Cite this

Nabeel, M., & Bertino, E. (2007). A structure preserving approach for securing XML documents. In Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007 (pp. 8-15). [4553802] https://doi.org/10.1109/COLCOM.2007.4553802

A structure preserving approach for securing XML documents. / Nabeel, Mohamed; Bertino, Elisa.

Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007. 2007. p. 8-15 4553802.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Nabeel, M & Bertino, E 2007, A structure preserving approach for securing XML documents. in Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007., 4553802, pp. 8-15, 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007, White Plains, NY, United States, 12/11/07. https://doi.org/10.1109/COLCOM.2007.4553802
Nabeel M, Bertino E. A structure preserving approach for securing XML documents. In Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007. 2007. p. 8-15. 4553802 https://doi.org/10.1109/COLCOM.2007.4553802
Nabeel, Mohamed ; Bertino, Elisa. / A structure preserving approach for securing XML documents. Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007. 2007. pp. 8-15
@inproceedings{b2ef43917fc64898a6626f6d087a329c,
title = "A structure preserving approach for securing XML documents",
abstract = "With the widespread adoption of XML as the message format to disseminate content over distributed systems including Web Services and Publish-Subscribe systems, different methods have been proposed for securing messages. We focus on a subset of such systems where incremental updates are disseminated. The goal of this paper is to develop an approach for disseminating only the updated or accessible portions of XML content while assuring confidentiality and integrity at message level. While sending only the updates greatly reduces the bandwidth requirements, it introduces the challenge of assuring security efficiently for partial messages disseminated to intermediaries and clients. We propose a novel localized encoding scheme based on conventional cryptographic functions to enforce security for confidentiality and content integrity at the granularity of XML node level. We also address structural integrity with respect to the complete XML document to which clients have access. Our solution takes every possible measure to minimize indirect information leakage by making the rest of the structure of XML documents to which intermediaries and clients do not have access oblivious. The experimental results show that our scheme is superior to conventional techniques of securing XML documents when the percentage of update with respect to original documents is low.",
author = "Mohamed Nabeel and Elisa Bertino",
year = "2007",
doi = "10.1109/COLCOM.2007.4553802",
language = "English",
isbn = "1424413176",
pages = "8--15",
booktitle = "Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007",

}

TY - GEN

T1 - A structure preserving approach for securing XML documents

AU - Nabeel, Mohamed

AU - Bertino, Elisa

PY - 2007

Y1 - 2007

N2 - With the widespread adoption of XML as the message format to disseminate content over distributed systems including Web Services and Publish-Subscribe systems, different methods have been proposed for securing messages. We focus on a subset of such systems where incremental updates are disseminated. The goal of this paper is to develop an approach for disseminating only the updated or accessible portions of XML content while assuring confidentiality and integrity at message level. While sending only the updates greatly reduces the bandwidth requirements, it introduces the challenge of assuring security efficiently for partial messages disseminated to intermediaries and clients. We propose a novel localized encoding scheme based on conventional cryptographic functions to enforce security for confidentiality and content integrity at the granularity of XML node level. We also address structural integrity with respect to the complete XML document to which clients have access. Our solution takes every possible measure to minimize indirect information leakage by making the rest of the structure of XML documents to which intermediaries and clients do not have access oblivious. The experimental results show that our scheme is superior to conventional techniques of securing XML documents when the percentage of update with respect to original documents is low.

AB - With the widespread adoption of XML as the message format to disseminate content over distributed systems including Web Services and Publish-Subscribe systems, different methods have been proposed for securing messages. We focus on a subset of such systems where incremental updates are disseminated. The goal of this paper is to develop an approach for disseminating only the updated or accessible portions of XML content while assuring confidentiality and integrity at message level. While sending only the updates greatly reduces the bandwidth requirements, it introduces the challenge of assuring security efficiently for partial messages disseminated to intermediaries and clients. We propose a novel localized encoding scheme based on conventional cryptographic functions to enforce security for confidentiality and content integrity at the granularity of XML node level. We also address structural integrity with respect to the complete XML document to which clients have access. Our solution takes every possible measure to minimize indirect information leakage by making the rest of the structure of XML documents to which intermediaries and clients do not have access oblivious. The experimental results show that our scheme is superior to conventional techniques of securing XML documents when the percentage of update with respect to original documents is low.

UR - http://www.scopus.com/inward/record.url?scp=51349154174&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=51349154174&partnerID=8YFLogxK

U2 - 10.1109/COLCOM.2007.4553802

DO - 10.1109/COLCOM.2007.4553802

M3 - Conference contribution

SN - 1424413176

SN - 9781424413171

SP - 8

EP - 15

BT - Proceedings of the 3rd International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2007

ER -