Access control and the Resource Description Framework: A survey

@article{Kirrane2017AccessCA,
  title={Access control and the Resource Description Framework: A survey},
  author={S. Kirrane and Alessandra Mileo and S. Decker},
  journal={Semantic Web},
  year={2017},
  volume={8},
  pages={311-352}
}
In recent years we have seen significant advances in the technology used to both publish and consume structured data using the existing web infrastructure, commonly referred to as the Linked Data Web. However, in order to support the next generation of e-business applications on top of Linked Data suitable forms of access control need to be put in place. This paper provides an overview of the various access control models, standards and policy languages, and the different access control… 

Tables from this paper

Pattern-based access control in a decentralised collaboration environment
TLDR
This article proposes a method to facilitate a property-based access control mechanism using existing Web technologies: RDF, SHACL, WebIDs, nanopublications and the Linked Data Platform, illustrated with an extension of a custom nodeJS Solid server.
If you can't enforce it, contract it: Enforceability in Policy-Driven (Linked) Data Markets
TLDR
This paper demonstrates how ODRL can be used not only to represent access policies but also to specify access requests, offers and agreements, and proposes an approach to generate on-the-fly contracts that govern all explicit and implicit non-enforceable policies.
License and Template Access Control for Geospatial Linked Data
TLDR
This paper proposes a fine grained and flexible access control method for geospatial Linked Data and proposes a license and template-based access control web service that sits on top of a triple store, SPARQL processor and a RESTful API for access.
Delegated attribute-based access control(DABAC) for contextual Linked Data
TLDR
This work provides a solution for combining multiple security rules such that data owners can delegate a part of their permissions over their data, and can validate the overall allowed data during the security permissions design process.
A Fine-grained Access Control Model for Knowledge Graphs
TLDR
A distributed and secure Knowledge graph management system is presented that supports both open and closed access control and its architecture guarantees the management of very large knowledge graph.
Weighted Access Control Policies Cohabitation in Distributed Systems
TLDR
A new approach based on organization’s weight in order to resolve potential detected policy conflicts is proposed and how to calculate \(\alpha _i\) accordingly is defined accordingly and a new algorithm is proposed to resolve the detected conflicts.
Towards an Access Control Model for Knowledge Graphs (Discussion Paper)
TLDR
A distributed and secure Knowledge graph management system is presented that supports both open and closed access control and its architecture guarantees the secure access of very large knowledge graph by means of query transformation.
Self-Enforcing Access Control for Encrypted RDF
TLDR
This paper proposes a flexible and dynamic mechanism for securely storing and efficiently querying RDF datasets by employing an encryption strategy based on Functional Encryption in which controlled data access does not require a trusted mediator, but is instead enforced by the cryptographic approach itself.
Security Aspects in Web of Data Based on Trust Principles. A brief of Literature Review
TLDR
This paper shows a literature review about these security aspects of "Big Data" through a complex integration that embraces several dimensions from using of research data, Open Data, Linked Data, Social Network Data, etc.
Enforcing scalable authorization on SPARQL queries
TLDR
Novel approaches for enforcing access control on SParQL queries are introduced and their implementation is evaluated using an extension of the Berlin SPARQL Benchmark.
...
...

References

SHOWING 1-10 OF 130 REFERENCES
Towards a Fine-Grained Access Control Model and Mechanisms for Semantic Databases
TLDR
This paper presents a fine-grained access control model specifically tailored to semantic models that can be enforced at the level of both the model's concepts and the concepts' instances by means of a query rewriting strategy.
A Pattern System for Access Control
TLDR
A set of patterns that include a basic authorization pattern that is the basis for patterns for the well-established discretionary and role-based access control models are presented.
An Access Control Framework for the Web of Data
TLDR
This paper presents a access control framework that consists of a light-weight vocabulary for defining fine-grained privacy preferences for structured data and a privacy preference manager which allows users to create privacy preferences based on the authors' vocabulary and restrict access to their data to third-party users.
An Access Control Model for Linked Data
TLDR
An access control model is defined providing the users with means to define policies for restricting the access to specific RDF data, based on social tags, and contextual information, and enforced when querying Linked Data.
Applying the semantic Web layers to access control
TLDR
This work demonstrates how the semantic web concepts and its layers infrastructure may play an important role in many relevant fields, such as the case of access control and authorization fields.
A Role and Attribute Based Access Control System Using Semantic Web Technologies
TLDR
This work follows the role-based access control approach (RBAC) and extend it with contextual attributes and provides for the dynamic association of roles with users.
Access Control Policies for Semantic Networks
TLDR
Requirements for an access control model for semantic networks are discussed and an approach and an initial implementation are presented and end user tools for policy specification and assessment are described.
Access Control for HTTP Operations on Linked Data
TLDR
This paper shows how the Shi3ld attribute-based authorization framework for SParQL endpoints has been progressively converted to protect HTTP operations on RDF, and demonstrates that the resulting authorization framework provides the same functionalities of its SPARQL-based counterpart, including the adoption of Semantic Web languages only.
Secure Manipulation of Linked Data
TLDR
This paper proposes a general authorisation framework that can be used to deliver dynamic query results based on user credentials and to cater for the secure manipulation of linked data.
A Policy Based Approach to Security for the Semantic Web
TLDR
This research investigates the marking up of web entities with a semantic policy language and the use of distributed policy management as an alternative to traditional authentication and access control schemes.
...
...