Modeling and Enforcing Access Control Obligations for SPARQL-DL Queries

Research & Innovation

Different access control models are presented in literature for semantic data, allowing the expression and enforcement of access policies that are based on roles and other attributes of the requesting user usually. We investigate a different access control perspective in the present work, allowing a Policy Administrator to define system obligations that are focused on the enhanced semantics, with a particular reference to the information that can be inferred from the starting knowledge representation, using DL reasoning. That is done by applying a paradigm for the speci fication and enforcement of access control obligations to the SPARQL-DL query model for OWL ontologies. The presented approach allows more than a simple permit/deny control on inferred data (e.g., data can be returned, but after an anonymization process), together with the possibility of specifying very expressive policies.