research-article

Analysis of Schemas with Access Restrictions

Authors:

Michael Benedikt,

Pierre Bourhis,

Clemens LeyAuthors Info & Claims

ACM Transactions on Database Systems (TODS), Volume 40, Issue 1

Article No.: 5, Pages 1 - 46

https://doi.org/10.1145/2699500

Published: 25 March 2015 Publication History

Abstract

We study verification of systems whose transitions consist of accesses to a Web-based data source. An access is a lookup on a relation within a relational database, fixing values for a set of positions in the relation. For example, a transition can represent access to a Web form, where the user is restricted to filling in values for a particular set of fields. We look at verifying properties of a schema describing the possible accesses of such a system. We present a language where one can describe the properties of an access path and also specify additional restrictions on accesses that are enforced by the schema. Our main property language, AccessLTL, is based on a first-order extension of linear-time temporal logic, interpreting access paths as sequences of relational structures. We also present a lower-level automaton model, A-automata, into which AccessLTL specifications can compile. We show that AccessLTL and A-automata can express static analysis problems related to “querying with limited access patterns” that have been studied in the database literature in the past, such as whether an access is relevant to answering a query and whether two queries are equivalent in the accessible data they can return. We prove decidability and complexity results for several restrictions and variants of AccessLTL and explain which properties of paths can be expressed in each restriction.

Supplementary Material

a5-benedikt-apndx.pdf (benedikt.zip)

Supplemental movie, appendix, image and software files for, Analysis of Schemas with Access Restrictions

Download
133.87 KB

References

[1]

S. Abiteboul, R. Hull, and V. Vianu. 1995. Foundations of Databases. Addison-Wesley.

Digital Library

[2]

S. Abiteboul, V. Vianu, B. S. Fordham, and Y. Yesha. 2000. Relational transducers for electronic commerce. J. Comput. Syst. Sci. 61, 2, 236--269.

Digital Library

[3]

F. Belardinelli, A. Lomuscio, and F. Patrizi. 2012. An abstraction technique for the verification of artifact-centric systems. In Proceedings of the 13^th International Conference on Principles of Knowledge Representation and Reasoning (KR'12).

[4]

M. Benedikt, G. Gottlob, and P. Senellart. 2011. Determining relevance of accesses at runtime. In Proceedings of the 23^rd ACM SIGACT-SIGMOD-SIGART Symposium on Principles of Database Systems (PODS'11). 211--222.

Digital Library

[5]

A. Calì, D. Calvanese, and D. Martinenghi. 2009. Dynamic query optimization under access limitations and dependencies. J. Univer. Comput. Sci. 15, 1, 33--62.

[6]

A. Calì and D. Martinenghi. 2008. Conjunctive query containment under access limitations. In Proceedings of the International Conference on Conceptual Modeling (ER'08). 326--340.

Digital Library

[7]

A. Chandra and M. Y. Vardi. 1985. The implication problem for functional and inclusion dependencies is undecidable. SIAM J. Comput. 14, 3, 671--677.

Digital Library

[8]

S. Chaudhuri and M. Y. Vardi. 1997. On the equivalence of recursive and nonrecursive datalog programs. J. Comput. Syst. Sci. 54, 1, 61--78.

Digital Library

[9]

E. M. Clarke, O. Grumberg, and D. Peled. 2000. Model Checking. MIT Press.

[10]

H. Comon, M. Dauchet, R. Gilleron, F. Jacquemard, D. Lugiez, S. Tison, and M. Tommasi. 1997. Tree Automata Techniques and Applications. http://tata.gforge.inria.fr/.

[11]

E. Damaggio, A. Deutsch, and V. Vianu. 2012. Artifact systems with data dependencies and arithmetic. ACM Trans. Database Syst. 37, 3, 22:1--22:36.

Digital Library

[12]

A. Deutsch, R. Hull, F. Patrizi, and V. Vianu. 2009. Automatic verification of data-centric business processes. In Proceedings of the 12^th International Conference on Database Theory (ICDT'09). 252--267.

Digital Library

[13]

A. Deutsch, B. Ludäscher, and A. Nash. 2007a. Rewriting queries using views with access patterns under integrity constraints. Theor. Comput. Sci. 371, 3, 200--226.

Digital Library

[14]

A. Deutsch, L. Sui, and V. Vianu. 2007b. Specification and verification of data-driven Web applications. J. Comput. Syst. Sci. 73, 442--474.

Digital Library

[15]

E. Emerson. 1990. Temporal and modal logic. In Handbook of Theoretical Computer Science, Vol. b. MIT Press, 995--1072.

Digital Library

[16]

C. Fritz, R. Hull, and J. Su. 2009. Automatic construction of simple artifact-based business processes. In Proceedings of the 12^th International Conference on Database Theory (ICDT'09). 225--238.

Digital Library

[17]

B. B. Hariri, D. Calvanese, G. D. Giacomo, A. Deutsch, and M. Montali. 2013. Verification of relational data-centric dynamic systems with external services. In Proceedings of the 32^nd ACM SIGMOD-SIGACT-SIGART Symposium on Principles of Database Systems (PODS'13). 163--174.

Digital Library

[18]

I. Hodkinson, F. Wolter, and M. Zakharyaschev. 2000. Decidable fragments of first-order temporal logics. Ann. Pure Appl. Logic 106, 1--3, 85--134.

[19]

A. Kurucz, F. Wolter, M. Zakharyaschev, and D. M. Gabbay. 2003. Many-Dimensional Modal Logics: Theory and Applications. Elsevier.

[20]

C. Li. 2003. Computing complete answers to queries in the presence of limited access patterns. VLDB J. 12, 3, 211--227.

Digital Library

[21]

C. Li and E. Y. Chang. 2001. Answering queries with useful bindings. ACM Trans. Database Syst. 26, 3, 313--343.

Digital Library

[22]

A. Nash and B. Ludäscher. 2004. Processing first-order queries under limited access patterns. In Proceedings of the 23^rd ACM SIGACT-SIGMOD-SIGART Symposium on Principles of Database Systems (PODS'04). 307--318.

Digital Library

[23]

A. Rajaraman, Y. Sagiv, and J. D. Ullman. 1995. Answering queries using templates with binding patterns. In Proceedings of the 14^th ACM SIGACT-SIGMOD-SIGART Symposium on Principles of Database Systems (PODS'95). 105--112.

Digital Library

[24]

M. Spielmann. 2003. Verification of relational transducers for electronic commerce. J. Comput. Syst. Sci. 66, 1, 40--65.

Digital Library

[25]

J. D. Ullman. 1989. Principles of Database and Knowledge-Base Systems. Vol. 2. Computer Science Press.

Digital Library

[26]

F. Wolter and M. Zakharyaschev. 1999. Modal description logics: Modalizing roles. Fundamenta Informaticae 39, 4, 411--438.

Digital Library

Cited By

Wasiak MLewczuk KKłodawski MJachimowski R(2021)The concept of logistics facilities database in the EPLOS systemWUT Journal of Transportation Engineering10.5604/01.3001.0015.0620132(29-41)Online publication date: 1-Mar-2021
https://doi.org/10.5604/01.3001.0015.0620
Wasiak MSzczepański EJachimowski RGołębiowski PLeleń P(2019)Structure of databases of the EPLOS system on road transportation and railway infrastructureWUT Journal of Transportation Engineering10.5604/01.3001.0013.6582125(192-204)Online publication date: 1-Jun-2019
https://doi.org/10.5604/01.3001.0013.6582
Benedikt MBourhis PGottlob GSenellart P(2019)Monadic Datalog, Tree Validity, and Limited Access ContainmentACM Transactions on Computational Logic10.1145/334451421:1(1-45)Online publication date: 4-Oct-2019
https://dl.acm.org/doi/10.1145/3344514
Show More Cited By

Index Terms

Analysis of Schemas with Access Restrictions

Recommendations

Querying schemas with access restrictions

We study verification of systems whose transitions consist of accesses to a Web-based data-source. An access is a lookup on a relation within a relational database, fixing values for a set of positions in the relation. For example, a transition can ...
Compact access control labeling for efficient secure XML query evaluation

Fine-grained access controls for XML define access privileges at the granularity of individual XML nodes. In this paper, we present a fine-grained access control mechanism for XML data. This mechanism exploits the structural locality of access rights as ...
Using schemas to simplify access control for XML documents
ICDCIT'04: Proceedings of the First international conference on Distributed Computing and Internet Technology

Organizations are increasingly using the the eXtensible Markup Language (XML) for document representation and exchange on the Web To protect an XML document from unauthorized access, authorizations are specified on the XML document itself or on the ...

Comments

Information & Contributors

Information

Published In

cover image ACM Transactions on Database Systems

ACM Transactions on Database Systems Volume 40, Issue 1

March 2015

260 pages

ISSN:0362-5915

EISSN:1557-4644

DOI:10.1145/2751312

Editor:
Christian S. Jensen
Aalborg University, Denmark

Issue’s Table of Contents

Copyright © 2015 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 25 March 2015

Accepted: 01 November 2014

Revised: 01 October 2014

Received: 01 June 2012

Published in TODS Volume 40, Issue 1

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed

Funding Sources

EPSRC EP/H017690/1
Engineering and Physical Sciences Research Council UK
INRIA project Northern European associate teams between INRIA Lille and University of Oxford

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
274
Total Downloads

Downloads (Last 12 months)5
Downloads (Last 6 weeks)0

Reflects downloads up to 01 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Wasiak MLewczuk KKłodawski MJachimowski R(2021)The concept of logistics facilities database in the EPLOS systemWUT Journal of Transportation Engineering10.5604/01.3001.0015.0620132(29-41)Online publication date: 1-Mar-2021
https://doi.org/10.5604/01.3001.0015.0620
Wasiak MSzczepański EJachimowski RGołębiowski PLeleń P(2019)Structure of databases of the EPLOS system on road transportation and railway infrastructureWUT Journal of Transportation Engineering10.5604/01.3001.0013.6582125(192-204)Online publication date: 1-Jun-2019
https://doi.org/10.5604/01.3001.0013.6582
Benedikt MBourhis PGottlob GSenellart P(2019)Monadic Datalog, Tree Validity, and Limited Access ContainmentACM Transactions on Computational Logic10.1145/334451421:1(1-45)Online publication date: 4-Oct-2019
https://dl.acm.org/doi/10.1145/3344514
Jachimowski RGołębiowski PIzdebski MPyza DSzczepański E(2017)Designing and efficiency of database for simulation of processes in systems. Case study for the simulation of warehouse processesArchives of Transport10.5604/01.3001.0009.738041:1(31-42)Online publication date: 13-Mar-2017
https://doi.org/10.5604/01.3001.0009.7380
Jacyna MGołębiowski PSzczepański EWasiak M(2017)Efficacy of Data Security in Managing the Database of SIMMAG 3D SystemProcedia Engineering10.1016/j.proeng.2017.04.410187(526-531)Online publication date: 2017
https://doi.org/10.1016/j.proeng.2017.04.410
Cao YFan WÖzcan FKoutrika GMadden S(2016)An Effective Syntax for Bounded Relational QueriesProceedings of the 2016 International Conference on Management of Data10.1145/2882903.2882942(599-614)Online publication date: 26-Jun-2016
https://dl.acm.org/doi/10.1145/2882903.2882942

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Issue’s Table of Contents