XML update control method based on security update views

Abstract

In order to facilitate users to update XML documents,while ensuring security,the paper proposed an update control method for XML based on the security update views. To generate a security update view,the annotations of updating constrains were added to Document Type Definition (DTD) elements of a security view,such as Insert,Delete and Replace,to instruct the updating process. In this way,different security update views were provided to different users for their updating operations. For an update query Q on the security update view,this method provided an algorithm to check the authorization of Q and another algorithm to rewrite it to an equivalent operation over the original XML document. The method can deal with updating operations on XML effectively. At the same time,it provides a user with the security update view,which is visible to him only and avoids information leakage.