Concept-level access control for the Semantic Web

Research output: Chapter in Book/Report/Conference proceedingConference contribution

78 Scopus citations

Abstract

Recently, the notion of the Semantic Web has been introduced to define a machine-interpretable web targeted for automation, integration and reuse of data across different applications. Under the Semantic Web, web pages are annotated by concepts that are formally defined in ontologies along with the relationships among them. As information pertaining to different concepts has varying access control requirements, in this paper, we propose an access control model for the semantic web that is capable of specifying authorizations over concepts defined in ontologies and enforcing them upon data instances annotated by the concepts. It is important to note that semantic relationships among concepts play a key role in making access control decisions. This is because, based on the relationship, one may infer information contained in one concept node from that of the other. Therefore, we first identify the important domain-independent relationships among concepts, categorize them and propose propagation policies based on these categories of relationships. In particular, we allow propagation of authorizations based on the semantic relationships among concepts to prevent illegal inferences. We then show how concept-level security polices can be represented in an OWL-based access control language. Finally, we demonstrate how users' requests can be handled under our access control model. Our concept-level model is especially suitable for the specification and administration of access control over semantically related web data under the Semantic Web even if they conform to different DTDs or use different tag names.

Original languageEnglish (US)
Title of host publicationProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security)
PublisherAssociation for Computing Machinery
Pages94-103
Number of pages10
ISBN (Print)158113777X, 9781581137774
DOIs
StatePublished - 2003
Externally publishedYes
EventProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security) - Fairfax, VA, United States
Duration: Oct 31 2003Oct 31 2003

Publication series

NameProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security)

Other

OtherProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security)
CountryUnited States
CityFairfax, VA
Period10/31/0310/31/03

All Science Journal Classification (ASJC) codes

  • Engineering(all)

Keywords

  • Access control
  • Concept
  • Ontology
  • Propagation
  • Semantic Web

Fingerprint Dive into the research topics of 'Concept-level access control for the Semantic Web'. Together they form a unique fingerprint.

Cite this