论文标题

基于查询的链接数据的访问控制

Query Based Access Control for Linked Data

论文作者

Kirrane, Sabrina, Mileo, Alessandra, Polleres, Axel, Decker, Stefan

论文摘要

近年来,我们看到了用于发布和消费链接数据的技术的重大进展。但是,为了支持下一代的eBusiness应用程序,需要建立相互联系的机器可读数据,需要进行适当的访问控制形式。尽管已经提出了许多访问控制模型和框架,但对与授予部分数据访问或提议访问控制机制的正确性相关的安全含义的研究很少。因此,本文的贡献是两个方面:我们提出了一种查询重写算法,可用于部分限制对SPARQL 1.1查询和更新的访问;我们演示了一组最初用于验证访问控制策略在不同数据库状态下保留的标准,可以通过查询重写来验证访问控制的正确性。

In recent years we have seen significant advances in the technology used to both publish and consume Linked Data. However, in order to support the next generation of ebusiness applications on top of interlinked machine readable data suitable forms of access control need to be put in place. Although a number of access control models and frameworks have been put forward, very little research has been conducted into the security implications associated with granting access to partial data or the correctness of the proposed access control mechanisms. Therefore the contributions of this paper are two fold: we propose a query rewriting algorithm which can be used to partially restrict access to SPARQL 1.1 queries and updates; and we demonstrate how a set of criteria, which was originally used to verify that an access control policy holds over different database states, can be adapted to verify the correctness of access control via query rewriting.

扫码加入交流群

加入微信交流群

微信交流群二维码

扫码加入学术交流群,获取更多资源