Research On Query And Update Based On XML Security View

As the Internet develops, XML, as a semi-structured language, has become an important data carrier, a number of applications and services have adopted XML as a data transfer object, so the security of XML data has become more and more important. In order to prevent the user from inferring sensitive information according to the data published already. This paper presents an Access Control Model based on XML Security view to prevent the leakage of sensitive data. At the same time, XML data may be updated at any time with business requirements, this paper presents a method about updating secure XML views. So, many strategies and models are brought out to protect XML security.Our work mainly focuses on database system concept and we want to find out a way to protect XML data using the views. This paper firstly describes the XML query language and other basic knowledge, analysis how to derive some additional information through multiple XML query results. In order to prevent leakage of sensitive information, we put forward a strategy that uses security annotations to build the XML security views. Under the security view, you can convert XPath queries based on security views into equivalent queries on original data source of XML document. Security views are available to authorized users; however, the original XML document data are hidden from the users. In order to protect the sensitive information of data source, users can construct queries on the security view, but they can not see all the data.Secondly, the paper proposes optimized algorithms on building XML security view. Optimized algorithm can not only handle with the conventional XML documents, but also can deal with DTD with recursive definition, providing a more general method and better efficiency in the implementation.Thirdly, in order to solve the problem of updating XML data through security view, we put forward a framework and algorithm for updating security view. Our algorithm can convert updating on security views into updating data source of XML document. We analysis how to validate the effectiveness of users'update operation and proposed a method to guarantee effective update. At the same time, in this paper, we propose a rewrite algorithm for updating the view, which convert users'update request annotated with XPath expressions into equivalent XQuery operation on original data source of XML document.The main work and innovations of this paper are:1. Analysis the importance of XML data security, introduced the current research on XML data security controls.2. Proposed XML data query and updating model based on the security view, protecting XML data from the view aspect.3. This paper presents a XML query framework based on XML security view and gives a novel algorithm to derive security view from security specifications. Our algorithms can handle with XML data with a recursive definition; versatility and performance better, and gives experimental verification.4. We present the analysis of the view update problem based on XML security view and put forward a framework that describe how to update XML data and an algorithm for XML data update. Then we verify our algorithm with experimental examples.We study the concept of XML security view and do exploring research on how to do secure query and update, so that we will perfect the view mechanism for native XML database. We prompt new thought and algorithm for these commands, so this paper is of great theoretical and applicative values.