Static analysis of XML security views and query rewriting.pdfVIP

Information and Computation 238 (2014) 2–29 Contents lists available at ScienceDirect Information and Computation /locate/yinco Static analysis of XML security views and query rewriting ? Beno?t Groz a,b,d,?, S?awomir Staworko a,c, Anne-Cecile Caron a,b, Yves Roos a,b, Sophie Tison a,b a Mostrare Project, INRIA Lille Nord-Europe LIFL (CNRS UMR8022), France b University of Lille 1, France c University of Lille 3, France d ENS Cachan, France article info Article history: Received 25 February 2011 Available online 21 July 2014 Keywords: XML Security views Query rewriting Determinacy abstract In this paper, we revisit the view based security framework for XML without imposing any of the previously considered restrictions on the class of queries, the class of DTDs, and the type of annotations used to de?ne the view. First, we study query rewriting with views when the classes used to de?ne queries and views are Regular XPath and MSO. Next, we investigate problems of static analysis of security access speci?cations (SAS): we introduce the novel class of interval-bounded SAS and we de?ne three different manners to compare views (i.e. queries) from a security point of view. We provide a systematic study of the complexity for deciding these three comparisons, when the depth of the XML documents is bounded, when the document may have an arbitrary depth but the queries de?ning the views are restricted to guarantee the interval-bounded property, and in the general setting without restriction on queries and document. ? 2014 Elsevier Inc. All rights reserved. 1. Introduction The wide acceptance of XML as the format for data representation and exchange clearly demonstrates the need for a general and ?exible framework of secure access for XML databases. While security speci?cation and enforcement are well established in relational databases, their methods and approaches cannot be easily adapted to XML databases. This is because an XML document stores information not only in its dat