Pavan Reddiavri (Ebiquity Labs) “R ♫ P” RDF Access control Policies.

Slides:



Advertisements
Similar presentations
Improving Human-Semantic Web Interaction: The Rhizomer Experience Roberto García and Rosa Gil GRIHO - Human Computer Interaction Research Group Universitat.
Advertisements

Building a Semantic IntraWeb with Rhizomer and a Wiki Roberto Garcia and Rosa Gil GRIHO (Human Computer Interaction Research Group) Universitat de Lleida,
Dr. Leo Obrst MITRE Information Semantics Information Discovery & Understanding Command & Control Center February 6, 2014February 6, 2014February 6, 2014.
1 Ontolog OOR Use Case Review Todd Schneider 1 April 2010 (v 1.2)
CH-4 Ontologies, Querying and Data Integration. Introduction to RDF(S) RDF stands for Resource Description Framework. RDF is a standard for describing.
1 UIM with DAML-S Service Description Team Members: Jean-Yves Ouellet Kevin Lam Yun Xu.
GridVine: Building Internet-Scale Semantic Overlay Networks By Lan Tian.
ESDSWG2011 – Semantic Web session Semantic Web Sub-group Session ESDSWG 2011 Meeting – Semantic Web sub-group session Wednesday, November 2, 2011 Norfolk,
RDF Tutorial.
Semantic Web Introduction
Building and Analyzing Social Networks Web Data and Semantics in Social Network Applications Dr. Bhavani Thuraisingham February 15, 2013.
Michael Povolotsky CMSC491s/691s. What is Virtuoso? Virtuoso, known as Virtuoso Universal Server, is a multi-protocol RDBMS Includes an object-relational.
Semantic Web Tools Vagan Terziyan Department of Mathematical Information Technology, University of Jyvaskyla ;
Ontologies and the Semantic Web by Ian Horrocks presented by Thomas Packer 1.
Semantic Web Tools for Authoring and Using Analysis Results Richard Fikes Robert McCool Deborah McGuinness Sheila McIlraith Jessica Jenkins Knowledge Systems.
RDF: Building Block for the Semantic Web Jim Ellenberger UCCS CS5260 Spring 2011.
© 1Spatial All rights reserved. An Internet of Places Making Location Data Pervasive Paul Watson Giuseppe Conti* Federico Prandi*
1 DCS861A-2007 Emerging IT II Rinaldo Di Giorgio Andres Nieto Chris Nwosisi Richard Washington March 17, 2007.
OIL: An Ontology Infrastructure for the Semantic Web D. Fensel, F. van Harmelen, I. Horrocks, D. L. McGuinness, P. F. Patel-Schneider Presenter: Cristina.
Audumbar Chormale Advisor: Dr. Anupam Joshi M.S. Thesis Defense
Automobile Enthusiasts Database System May 7, 2003.
TIBCO Designer TIBCO BusinessWorks is a scalable, extensible, and easy to use integration platform that allows you to develop, deploy, and run integration.
Triple Stores.
An OWL based schema for personal data protection policies Giles Hogben Joint Research Centre, European Commission.
TAPP-09 23/02/2009Giorgos Flouris1 On Explicit Provenance Management in RDF/S Graphs Institute of Computer Science Foundation for Research and Technology.
Logics for Data and Knowledge Representation SPARQL Protocol and RDF Query Language (SPARQL) Feroz Farazi.
Managing Large RDF Graphs (Infinite Graph) Vaibhav Khadilkar Department of Computer Science, The University of Texas at Dallas FEARLESS engineering.
ONTOLOGY SUPPORT For the Semantic Web. THE BIG PICTURE  Diagram, page 9  html5  xml can be used as a syntactic model for RDF and DAML/OIL  RDF, RDF.
Rajashree Deka Tetherless World Constellation Rensselaer Polytechnic Institute.
SPARQL All slides are adapted from the W3C Recommendation SPARQL Query Language for RDF Web link:
BiodiversityWorld GRID Workshop NeSC, Edinburgh – 30 June and 1 July 2005 Metadata Agents and Semantic Mediation Mikhaila Burgess Cardiff University.
Practical RDF Chapter 1. RDF: An Introduction
Deploying Trust Policies on the Semantic Web Brian Matthews and Theo Dimitrakos.
Logics for Data and Knowledge Representation
Database Support for Semantic Web Masoud Taghinezhad Omran Sharif University of Technology Computer Engineering Department Fall.
RDF and OWL Developing Semantic Web Services by H. Peter Alesso and Craig F. Smith CMPT 455/826 - Week 6, Day Sept-Dec 2009 – w6d21.
By: Dan Johnson & Jena Block. RDF definition What is Semantic web? Search Engine Example What is RDF? Triples Vocabularies RDF/XML Why RDF?
Storage and Retrieval of Large RDF Graph Using Hadoop and MapReduce Mohammad Farhan Husain, Pankil Doshi, Latifur Khan, Bhavani Thuraisingham University.
Metadata. Generally speaking, metadata are data and information that describe and model data and information For example, a database schema is the metadata.
Daniel J. Abadi · Adam Marcus · Samuel R. Madden ·Kate Hollenbach Presenter: Vishnu Prathish Date: Oct 1 st 2013 CS 848 – Information Integration on the.
SPARQL Query Graph Model (How to improve query evaluation?) Ralf Heese and Olaf Hartig Humboldt-Universität zu Berlin.
Efficient RDF Storage and Retrieval in Jena2 Written by: Kevin Wilkinson, Craig Sayers, Harumi Kuno, Dave Reynolds Presented by: Umer Fareed 파리드.
WP3: Provenance and Access Policies Giorgos Flouris (FORTH) - Irini Fundulaki (CWI & FORTH) -
Metadata Schema for CERIF Andrei Lopatenko Vienna University of Technology
Introduction to the Semantic Web and Linked Data Module 1 - Unit 2 The Semantic Web and Linked Data Concepts 1-1 Library of Congress BIBFRAME Pilot Training.
User Profiling using Semantic Web Group members: Ashwin Somaiah Asha Stephen Charlie Sudharshan Reddy.
© 2006 University of Kansas An LSID resolver for specimens and a digression into issues raised by the use of GUIDs Steve Perry
Extending the MDR for Semantic Web November 20, 2008 SC32/WG32 Interim Meeting Vilamoura, Portugal - Procedure for the Specification of Web Ontology -
Dr. Bhavani Thuraisingham September 24, 2008 Building Trustworthy Semantic Webs Lecture #9: RDF and RDF Security.
Steven Seida How Does an RDF Knowledge Store Compare to an RDBMS?
Triple Stores. What is a triple store? A specialized database for RDF triples Can ingest RDF in a variety of formats Supports a query language – SPARQL.
RDF and Relational Databases
Management of Semantic Instances in resources using SPARQL update operation with HTTP verbs Group Name: MAS 19 Source: Minwoo Ryu, jaeho Kim, Sungchan.
1 Open Ontology Repository initiative - Planning Meeting - Thu Co-conveners: PeterYim, LeoObrst & MikeDean ref.:
Jens Hartmann York Sure Raphael Volz Rudi Studer The OntoWeb Portal.
RDF storages and indexes Maciej Janik September 1, 2005 Enterprise Integration – Semantic Web.
Chapter 5 The Semantic Web 1. The Semantic Web  Initiated by Tim Berners-Lee, the inventor of the World Wide Web.  A common framework that allows data.
Sesame A generic architecture for storing and querying RDF and RDFs Written by Jeen Broekstra, Arjohn Kampman Summarized by Gihyun Gong.
WP3: Data Provenance and Access Control Irini Fundulaki, FORTH December 11-12, 2012, Luxembourg.
Managing Large RDF Graphs Vaibhav Khadilkar Dr. Bhavani Thuraisingham Department of Computer Science, The University of Texas at Dallas December 2008.
SEMANTIC WEB Presented by- Farhana Yasmin – MD.Raihanul Islam – Nohore Jannat –
NEDA ALIPANAH, MARIA ADELA GRANDO DBMI 11/19/2012.
1 RDF Storage and Retrieval Systems Jan Pettersen Nytun, UiA.
SharePoint 101 – An Overview of SharePoint 2010, 2013 and Office 365
Semantic Event-based Service Oriented Architecture
Analyzing and Securing Social Networks
UMBC AN HONORS UNIVERSITY IN MARYLAND
Lecture #6: RDF and RDF Security Dr. Bhavani Thuraisingham
WebDAV Design Overview
Prof. Bhavani Thuraisingham The University of Texas at Dallas
Presentation transcript:

Pavan Reddiavri (Ebiquity Labs) “R ♫ P” RDF Access control Policies

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)2 Motivation Semantic Web Layer Cake (Berners-Lee 2004)* *Semantic web layer cake (Berners-Lee,2004)

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)3 Motivation Semantic Web would enable the a global social information sharing space. There is need for a preset agreements between users to create and share this knowledge. Current implementations have a coarse granularity of control (Photo sharing) inhibiting users.

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)4 Access Controls Identity Based Access Control Role Based Access Control Rule/Policies based Access Control

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)5 Why Policies ? Role based system will not provided the granularity Policies can be described with respect to time (allow on BirthDay) Difficult to create transient roles In a Role based system Policy based access controls are also being used other fields (databases, operating systems)

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)6 “R♫P” RAP looks at solving the problem of defining and implementing Access Control for a RDF store Current RDF either ignore or provide very basic access control Expressive control (Triple level)

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)7 “R♫P” is “The basic RAP framework will allow an agent (person or program) to perform various actions inserting, deleting, searching on a RDF store and the policy is used to decide if the action is permitted or prohibited.”

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)8 Acts on RDF -Graph Add new Node-Link-Node. Add a new Node, Link to a old Node Add a new Link between two old Nodes. Delete/ Update or Search for triples Infer Triples

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)9 RDFS Graph RDFS graph have a inherent structure The Action On a RDFS graph can also be confined( Schema or Instance modification)  Create a Class  Create Properties for a class  Create an Instance  Create property instance Does this Structure help us?

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)10 RAP: Actions See (A,T): Agent A sees triple T if it returned in the response to one of P's queries. Use (A,T): Agent A uses triple T if it is used in answering one of P's queries.

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)11 RAP: Actions Insert (A,T): Agent A directly inserts triple T into the graph. InferInsert (A,T): Agent A InferInsert triple T If Agent A Insert (A,T1) that implies T at a time when T is not in the graph.

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)12 RAP: Actions Remove (A,T): Agent A directly remove triple T into the graph. InferRemove (A,T): Agent A InferRemove triple T If Agent A Remove (A,T1) that implies T, such T existence in the graph depends on T1. update(A,T1,T2): Agent A directly replaces triple T1 with T2.

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)13 RAP : Example policies You want to prevent people from modifying schema i.e. defining classes or properties modifying their definitions “prohibited(insert(A,(_,P,_)) :- schemaPredicate(P)” schemaPredicate(P): true of P is a predicate used to define schema level information (e.g., rdfs:subClass, rdfs:domain, etc).

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)14 RAP : Example policies You want to prevent people from modifying schema i.e. defining classes or properties modifying their definitions “prohibited(insert(A,(_,P,_)) :- schemaPredicate(P)” schemaPredicate(P): true of P is a predicate used to define schema level information (e.g., rdfs:subClass, rdfs:domain, etc).

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)15 RAP : Example policies Agents are permitted to create instances of classes they created “permitted(insert(A,(_,rdfs:type,C))) :- createdNode(A,C)” Agents are permitted to delete any triples that they had inserted “permitted(remove(A,T)) :- createdTriple(A,T)”

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)16 Employer Data Store No one change the schema  “prohibited(insert(A,(_,P,_)) :- schemaPredicate(P)” User can create Instances of employer  “permitted(insert(A,(_,rdfs:type,RAP:employee))) :- registered(A).” You assert/see anything about things you created  “permitted(insert(A,(C,_,_)) :- createdNode(A).”  “permitted(see(A,(C,_,_)) :- createdNode(A).” You cannot see any ones salary  “prohibited(see(A,(_,emp:salary,_)).”  “prohibited(see(A,(_,P,_)) :- rdfs:subProperty(P,emp:salary)).”

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)17 RAP : Prototype RAP Policy Engine  REI  Prolog based Engine from scratch  Cwm RAP Policy Engine RDF client Data/Policies Access Protocol Data/Policies Access Protocol RDF Store RDF store  Redland  Kowari  Jena Models Data/Policies Access Protocol  Extend Http (webdav)  GET with SPARQL in the body to search the store  PUT with RDF data in the body to add data.

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)18 Other Considerations Policy representation  Prolog, N3, Custom….  Expressiveness of policies Delegation Handling Depth of Delegation. Can a club bouncer allow him self into the club? RDF store still in Naissance Performance and Scalability

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)19 Applications Enterprise level knowledge bases (RDF store)  Enterprise level blogger controlling creation and access of blogs Application requiring collaborative creation of a knowledge store  Alan Hollander’s application for in SPIRE

R♫PR♫P Pavan Reddiavri (Ebiquity Labs)20 Thank You

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.