C-SXA: Chip-Secured XML Access

Chip-Secured XML Access (C-SXA) is an XML-based access rights controller embedded in a smart card. C-SXA evaluates user’s privileges on a queried or streaming XML encrypted document and delivers the authorized subset of this document. Compared to existing methods, C-SXA supports fine grain and dynamic access control policies by separating access control issues from encryption. Application domains cover the exchange of confidential data among a community of users (e.g., collaborative work) as well as selective data dissemination (e.g., Digital Right Management, Parental and teacher control). A C-SXA engine has been developed in JavaCard on a real smart card platform and has been demonstrated at the SIGMOD’05 conference. Two application scenarios (collaborative agendas and selective dissemination of multimedia contents) have been developed on top of C-SXA to demonstrate the versatility of the approach. These applications have been the recipient of two international software award. More info on C-SXA