Skip to Main content Skip to Navigation

Sécurisation du contrôle d'accès pour des documents XML

François Dang Ngoc 1
1 SMIS - Secured and Mobile Information Systems
PRISM - Parallélisme, Réseaux, Systèmes, Modélisation, UVSQ - Université de Versailles Saint-Quentin-en-Yvelines, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR8144
Abstract : The erosion of trust put in traditional database servers and in Database Service Providers and the growing interest for different forms of selective data dissemination are different factors that lead to move the access control from servers to clients. Different data encryption and key dissemination schemes have been proposed to serve this purpose. By compiling the access control rules into the encryption process, all these methods suffer from a static way of sharing data. With the emergence of hardware security elements on client devices, more dynamic client-based access control schemes can be devised. This thesis proposes a tamper-resistant client-based XML access right controller supporting flexible and dynamic access control policies. The access control engine is embedded in a hardware secure device and therefore must cope with specific hardware resources. This engine takes benefit from a dedicated index to quickly converge towards the authorized parts of a – potentially streaming – XML document. Additional security mechanisms guarantee that the input document is protected from any form of tampering and replay attacks. Finally, we provide performance measurements and show the viability of our approach on smart cards in various application contexts.
Document type :
Complete list of metadata

Cited literature [45 references]  Display  Hide  Download
Contributor : Elisabeth Baque <>
Submitted on : Thursday, July 31, 2008 - 12:37:58 PM
Last modification on : Friday, January 10, 2020 - 3:42:17 PM
Long-term archiving on: : Thursday, June 3, 2010 - 5:17:40 PM



  • HAL Id : tel-00308626, version 1



François Dang Ngoc. Sécurisation du contrôle d'accès pour des documents XML. Computer Science [cs]. Université de Versailles-Saint Quentin en Yvelines, 2006. English. ⟨tel-00308626⟩



Record views


Files downloads