RESEARCH AND IMPLEMENTATION OF purpose-BASED PRIVACY ACCESS CONTROL POLICY IN XML DATA MODE

In this paper,we propose to construct the purpose-based privacy access control policy model for XML data mode,and to solve the problem of query-leakage of privacy data incurred by path transfer.In our approach,the policy is a minimum secure access tree model.And the minimum secure access tree is a group of path expressions expressed by XPath{/,//,} fragments without redundant paths,while the XPath{/,//,} points to a set of privacy nodes path with access permission.Experimental results show that the generation time of minimum secure tree depends on the labelling time of the private nodes in an XML documents and the discriminating time of redundant paths,and the labelling time is pertinent to the position of privacy data distributed in XML documents.The minimum secure access tree model is able to control the query leakage of private data.