Different access control models are presented in literature for semantic data, allowing the expression and enforcement of access policies that are based on roles and other attributes of the requesting user usually. We investigate a different access control perspective in the present work, allowing a Policy Administrator to define system obligations that are focused on the enhanced semantics, with a particular reference to the information that can be inferred from the starting knowledge representation, using DL reasoning. That is done by applying a paradigm for the speci fication and enforcement of access control obligations to the SPARQL-DL query model for OWL ontologies. The presented approach allows more than a simple permit/deny control on inferred data (e.g., data can be returned, but after an anonymization process), together with the possibility of specifying very expressive policies.
Politecnico di Milano
http://www.polimi.it/
Fabio Marfia is a Ph.D. student at Politecnico di Milano since 2011, under the supervision of prof. Marco Colombetti. His master thesis deals with the specification of domain-dependent policies, together with the development of specific functionalities related to policies as policy decision and policy explanation using OWL technology.
