Presentation is loading. Please wait.

Presentation is loading. Please wait.

Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Semantic Web Standards Presented By: David Shelly Usable Security – CS 6204 – Fall,

Published byLee Cameron Modified over 9 years ago

Similar presentations

Presentation on theme: "Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Semantic Web Standards Presented By: David Shelly Usable Security – CS 6204 – Fall,"— Presentation transcript:

1 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Semantic Web Standards Presented By: David Shelly Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech

2 Topics SemID Ontology Distributed Service Deployment Web Services Performance Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech

3 SemID (Semantic ID) Ontology Mohammad M. R. Chowdhury Josef Noll Juan Miguel Gomez UniK- University Graduate Center, Kjeller, Norway Universidad Carlos III de Madrid, Madrid, Spain http://www.semid.org/

4 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Introduction Problems Addressed:  Access control in distributed and dynamic systems  Privacy issues in project oriented corporate networks Ontology Solution:  Secure access to project resources  Maintain privacy of members “Ontologies are [the Semantic Web’s] cornerstone technology, providing structured vocabularies that describe a formal specification of a shared conceptualization.”

5 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Roles

6 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Use case: Rel9 Project

7 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Functional Architecture Formalize the semantics of roles, policies, and rules  Role – Has certain policy or policies assigned to it  Policy – Represents the privilege reserved for each role in a community and expressed through a set of Rules (R 1, R 2,… R n ) P = {R 1, R 2,… R n }  Rules – Takes an access request as an input and results in an action (permit, deny, or not-application) R = {S, R, A}

8 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Example Rules R = {JosefNoll, Deliverables, Permit } R = {GeirEgeland, Deliverables, Deny}

9 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Protégé Example http://protege.stanford.edu/

10 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Web Ontology Language (OWL) SemID Ontology has 10 properties  domain – classes to which a property is attached  range – allowed classes for properties

11 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Implementation Four different policies  Administrator  FinalApproval  Read  Read/Write

12 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Implementation Four instances of role  Project Leader  Supervisor  Project member  Visitor

13 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Implementation Four properties in Identity Instance  hasGroup  hasVisibility  hasRole  hasSupervisor

14 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Discussion Advantages of SemID over permissions schemes used in Windows/Linux? Is the SemID scheme usable? Will companies continuously update projects, roles, and permissions?

15 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Distributed System Deployment Artin Avanes Johann-Christoph Freytag Christof Bornhovd Humboldt-Universitat zu Berlin Berlin, Germany SAP Labs, LLC Palo Alto, California

16 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Introduction Advantages of Distributed Service Deployment  Higher system scalability  Better system response time  Higher data accuracy New Challenges  Increased Dynamics  Limited Resource Capabilities  Limited Reliability  Higher Demand for Scalability

17 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Classes Three Major Service Classes  Business Logic Services  Aggregation Services and Data Management Services  Basic Infrastructure Services

18 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Tiered System Architecture

19 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Deployment Service Mapping Context-Aware Determination of Service Requirements Group-Based Resource Tracking Priority Assignment and Query Processing Distributed Service Injection

20 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Deployment Service Mapping  Mapping Function Context-Aware Determination of Service Requirements Group-Based Resource Tracking Priority Assignment and Query Processing Distributed Service Injection

21 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Deployment Service Mapping Context-Aware Determination of Service Requirements  Translation Process Group-Based Resource Tracking Priority Assignment and Query Processing Distributed Service Injection

22 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Deployment Service Mapping Context-Aware Determination of Service Requirements Group-Based Resource Tracking  Group-Based Retrieval Algorithm Priority Assignment and Query Processing Distributed Service Injection

23 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Group-Based Retrieval Algorithm

24 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Deployment Service Mapping Context-Aware Determination of Service Requirements Group-Based Resource Tracking Priority Assignment and Query Processing  Two major request classes  Three strategies to determine priorities Distributed Service Injection

25 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Priority Assignment and Query Processing

26 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Service Deployment Service Mapping Context-Aware Determination of Service Requirements Group-Based Resource Tracking Priority Assignment and Query Processing Distributed Service Injection  Pair matching

27 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech OSGi Prototype Implementation Example Scenario: “ A wireless sensor network measures the temperature in specific areas of a warehouse, whereas the current temperature values are periodically forwarded to the display of a worker’s PDA. Each worker is equipped with such a PDA and can immediately react if the temperature exceeds a certain threshold to avoid damage of goods or machines.”

28 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Performance Evaluation List Topology ≤ O(N) + O(N 2 + N * H) →«O(n 2 + n * H) (no packet merging) ≤ O(N) + O(N) →« O(n) (with packet merging) Star Topology « O(n) Binary Tree Topology → O(lnN * N ln(2) ) ≤ O(lnN * N 0.7 ) « O(ln n * n 0.7 )

29 Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Discussion How could using a Distributed System Deployment in Mobile Ad-Hoc Networks apply to usable security? What privacy issues are at risk in distributed system deployment schemes?

Download ppt "Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Semantic Web Standards Presented By: David Shelly Usable Security – CS 6204 – Fall,"

Similar presentations

1 Ontolog OOR Use Case Review Todd Schneider 1 April 2010 (v 1.2)

1 Ontolog OOR Use Case Review Todd Schneider 1 April 2010 (v 1.2)
Intelligent Technologies Module: Ontologies and their use in Information Systems Revision lecture Alex Poulovassilis November/December 2009.

Intelligent Technologies Module: Ontologies and their use in Information Systems Revision lecture Alex Poulovassilis November/December 2009.
Chapter 1: Introduction to Scaling Networks

Chapter 1: Introduction to Scaling Networks
From Ontology Design to Deployment Semantic Application Development with TopBraid Holger Knublauch

From Ontology Design to Deployment Semantic Application Development with TopBraid Holger Knublauch
New Challenges for Access Control April 27, 2005 1 Improving Usability and Expressiveness with Dynamic Policies and Obligations Dennis Kafura Markus Lorch.

New Challenges for Access Control April 27, Improving Usability and Expressiveness with Dynamic Policies and Obligations Dennis Kafura Markus Lorch.
Provenance in Open Distributed Information Systems Syed Imran Jami PhD Candidate FAST-NU.

Provenance in Open Distributed Information Systems Syed Imran Jami PhD Candidate FAST-NU.
Understanding Active Directory

Understanding Active Directory
10/31/2007cs6221 Internet Indirection Infrastructure ( i3 ) Paper By Ion Stoica, Daniel Adkins, Shelley Zhuang, Scott Shenker, Sonesh Sharma Sonesh Sharma.

10/31/2007cs6221 Internet Indirection Infrastructure ( i3 ) Paper By Ion Stoica, Daniel Adkins, Shelley Zhuang, Scott Shenker, Sonesh Sharma Sonesh Sharma.
1 Draft of a Matchmaking Service Chuang liu. 2 Matchmaking Service Matchmaking Service is a service to help service providers to advertising their service.

1 Draft of a Matchmaking Service Chuang liu. 2 Matchmaking Service Matchmaking Service is a service to help service providers to advertising their service.
1 Attribute Based Communications University of California, Irvine Presented By : Ala Khalifeh (Note: Presented)

1 Attribute Based Communications University of California, Irvine Presented By : Ala Khalifeh (Note: Presented)
Community Manager A Dynamic Collaboration Solution on Heterogeneous Environment 2006.06.26 Hyeonsook Kim  2006 CUS. All rights reserved.

Community Manager A Dynamic Collaboration Solution on Heterogeneous Environment Hyeonsook Kim  2006 CUS. All rights reserved.
Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.

Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.
Understanding Active Directory

Understanding Active Directory
Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Medical Applications Tejinder Judge Usable Security – CS 6204 – Fall, 2009 – Dennis.

Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Medical Applications Tejinder Judge Usable Security – CS 6204 – Fall, 2009 – Dennis.
Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Privacy Preferences Edgardo Vega Usable Security – CS 6204 – Fall, 2009 – Dennis.

Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Privacy Preferences Edgardo Vega Usable Security – CS 6204 – Fall, 2009 – Dennis.
WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.

WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.
1 Semantic Technologies: Diamond in the Rough? Unik Graduate Research Center 22.05.07 Dr. Juan Miguel Gomez Universidad Carlos III de Madrid.

1 Semantic Technologies: Diamond in the Rough? Unik Graduate Research Center Dr. Juan Miguel Gomez Universidad Carlos III de Madrid.
TOWARDS INTEROPERABILITY IN TRACKING SYSTEMS: AN ONTOLOGY-BASED APPROACH Juan Gómez Romero Miguel A. Patricio Jesús García José M. Molina Applied A.I.

TOWARDS INTEROPERABILITY IN TRACKING SYSTEMS: AN ONTOLOGY-BASED APPROACH Juan Gómez Romero Miguel A. Patricio Jesús García José M. Molina Applied A.I.
Knowledge based Learning Experience Management on the Semantic Web Feng (Barry) TAO, Hugh Davis Learning Society Lab University of Southampton.

Knowledge based Learning Experience Management on the Semantic Web Feng (Barry) TAO, Hugh Davis Learning Society Lab University of Southampton.
Deploying Trust Policies on the Semantic Web Brian Matthews and Theo Dimitrakos.

Deploying Trust Policies on the Semantic Web Brian Matthews and Theo Dimitrakos.

Similar presentations

Ads by Google