以XSLT轉換Policy為基礎之XML資料庫角色權限控管之研究

XML（Extensible Markup Language）為現今網際網路上主要的資料交換的格式。XML資料庫因為可以直接將XML資料完整的儲存在資料庫中，因此在應用系統中逐漸普及。所以XML資料庫的權限控管之重要性亦相對提高。一般而言，權限控管皆以使用政策文件(Policy)來定義。在本篇論文中，我們利用[1]中XML資料庫權限控管之系統架構，針對Policy的部份，提出如何將Policy利用XSLT加以轉換，進而改善計算使用者權限之XMLAC文件的時間。

關鍵字

角色權限控管；政策； XSLT ； XML

並列摘要

XML has emerged as a standard format for data representation and information exchanges on the web.The development of XML databases made it possible to store the entire XML document in a database system. Since such XML document usually contain important enterprise information, the control of access to an XML database becomes an important research issue. Access control are usually specified by a policy document. In this thesis, we adopted the architecture for XML database access control are described in [1]. We then transform an XACML policy into XSLT, to improve efficiency for accessing an XML document.

並列關鍵字

XML ； XSLT ； RBAC ； Policy

參考文獻

[1] 孫德淳. 轉換XML為基礎之XML資料庫角色權限控管之研究. 中原大學資訊工程研究所碩士論文, 2008年六月, unpublished.

[2] W3C, Extensible Markup Language (XML) 1.0, Article from: http://www.w3.org/XML , April 2009.

[3] W3C, The Extensible Stylesheet Language Family (XSL) , Article from: http://www.w3.org/Style/XSL/ , April 2009

[7] J.G. Lee, K.Y. Whang and W.S. Han. The Dynamic Predicate: Integrating Access Control with Query Processing in XML Databases. The VLDB Journal – The International Journal on Very Large Data Bases, Volume 16, No. 3, July 2007, pp. 371-387.

[14] International Organization for Standardization (ISO). Information Technology Database Language SQL-Part14: XML-Related Specifications (SQL/XML), 2003

國際替代計量

以XSLT轉換Policy為基礎之XML資料庫角色權限控管之研究

未授權

主題瀏覽