Search

Building Secure Open & Distributed Social Networks

Loading...

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

15 comments

Comments 1 - 10 of 15 previous next Post a comment

  • + mychentw Michelle Chen 5 months ago
    Very interesting ppt. The research indicated PPT only contains 30% of information; therefore the 70% valuable information comes from the presenter himself/herself. soEZLecturing.com provides you a chance to record your voice with your PowerPoint presentation and upload to the website. It can share with more readers and also promote your presentation more effectively on soEZLecturing.com.
  • + bblfish Henry Story 2 years ago
    audio:

    Well ok. Let us be clearer still. Web servers don’t serve up graphs like that. And nobody has see arrows pointing across web servers.

    Web server serve up representations that have a graph as their interpretation, but these graphs are usually written up in some language such as this. This is an easy to read notation called Turtle.

    The arrows we showed previously come from the fact that both documents use the same URLs when talking about Tim and when talking about Henry. That is how two documents can point at the same objects.
  • + bblfish Henry Story 2 years ago
    audio:
    Ok so let us dig down a little and look more carefully at what is going on here. Let us just take a simple case of two graphs placed inside two files on two different web servers. The files can be built in two completely different ways.

    The Apache server is serving up file (representation) stating a few things about Tim Bray, on the Tomcat server is serving a file (representation) stating a few things about me.

    There are also arrows going from Henry to Tim and vice versa saying that they know each other.
  • + bblfish Henry Story 2 years ago
    audio:
    So in summary here are the advantges of such an AddressBook.
    1. We have an open social netowork without Data Silos. Metcalf’s law can work a lot better in an open web
    2. The information about the people you want to contact can always be up to date. It is after all just one HTTP GET away, and since there is no need to duplicate the information everywhere, we can feel more confident that people will keep their core information up to date.
    3. I did not show this, but it is very easy to publish a foaf file.
    4. You can drag and drop friends onto your address book
    5. We can even add security, as shown previously. At the end of the talk I will go into more sophisticated ways of doing this.
  • + bblfish Henry Story 2 years ago
    audio:
    Here is the way to think about what is happening. Instead of thinking just about names, we think about what the names refer to. What the names refer to is the semantics of the relation described via uris above. The triple of URIs forms the syntax. The thing they describe is the world. By distinguishing the names of things and the things they speak of we can use inferencing to deduce when two names identify the same thing. That is where inferencing comes to be important, and you will find out more on that subject by searching for OWL and rdf on the internet.
  • + bblfish Henry Story 2 years ago
    audio:
    So what about security?

    Well here is a very simple example of how to get securit going. Remember how earlier I pointed out that I had two identifiers: two urls in the right pane that were related by the “same as” relation?

    One of these was a sixiron.sfbay.sun.com:8080 url, a temporary sun intranet URL. This will not be accessible to anyone who is not inside the Sun firewall. Those who do have access will be able to click the space bar on my name in the first column, and the Address Book will fetch the internal sun foaf information, which will be merged with my information, because the first foaf file said those two names referred to the same thing, me.

    As a result someone who has that access will be able to browse not just my public network, but also my sun protected network...
  • + bblfish Henry Story 2 years ago
    audio:
    Do you notice the two tabs in the right pane?


    If you click the you click on the location tab, and wait a little, you will see a map of globe which you can have zoom into the location of the person highlighted. Here we can see an overview Cambridge Mass, where Tim Berners Lee’s MIT offices are.

    The map knows where Tim’s office location is because he added that information to his foaf file.

    This was put together rather quickly for JavaOne. The user interface clearly needs to be improoved. For example it should show a circle on the map to highlight his location. It won the map... All kinds of fun things are possible, and I welcome all to participate on improving this project.

    So Tim added that information to his foaf file. But he could also have just pointed to another resource located on another machine to give him that information.
  • + bblfish Henry Story 2 years ago
    audio:
    The Address Book then fetch the W3C URL identifying Tim Berners Lee, and merges this new information with the graph in the database, redisplaying then the information as shown here.

    You can also see a list of all Tim Berners Lees friends in the third column.

    You can also see where Tim Berners Lee’s office is ( in Cambridge Mass ), what his phone number is, his home page, and some other of his identifiers.
  • + bblfish Henry Story 2 years ago
    audio:
    Exploring the list of people I know, you will find Tim Berners Lee. I met Tim at a couple of semantic web conferences. He is a very nice person, and so I link to him. Notice that I don’t say much in my file about him. I just give his name and the URL identifying him. You will notice it is a w3c url. It is not the same URL as my foaf file was pointing to. His information is somewhere else on a different server.

    What if I want to find out more about Tim. In this Address Book it just requires pressing the space bar on your keyboard ( UI designers I welcome your improvement suggestions )
  • + bblfish Henry Story 2 years ago
    audio:
    Click on that first row of the first column and you will see a list of some of the people I know. You will also see more information about me in the right pane, including my home address, telephone number, home page, and so on... I am very public about all that information. I reckon that there is not much point protecting it, as it won’t help on iota, given the state of virus infection of so many computers in the world...

    Notice also the two “same as” fields at the top of the right pane. One, the bblfish.net URL that you dragged and dropped onto the first pane. The second URL is
    http://sixiron.sfbay.sun.com:8080/FoafServer/services/people/155492#HS
    which is an internal Sun URL.

Comments 1 - 10 of 15 previous next

Post a comment
Embed Video
Edit your comment Cancel

Notes on slide 1

Hello, my name is Henry Story. I work for Sun Microsystems where I research on the Semantic Web. I am tasked with finding ways to get people excited about what is happening in this space, which at first may seem very abstract. So I have been looking for problems that would affect people directly, have some real immediate business value, clearly demonstrate the power of the semantic web, and that is small enough that I don't need a big budget to get things done. After all I am in the business of convincing people. Once they are convinced I hope they will help out one way or another. Social Networking is big. It affects everyone in very personal ways. It is useful. It is what we are all about. Here I wish to show how one can build an secure, open, distributed global social network with no center of control. The only way to do this is using the semantic web....

25 Favorites & 2 Groups

Building Secure Open & Distributed Social Networks - Presentation Transcript

  1. Secure Distributed Open Social Networks
    • Henry Story
      • Senior Staff Engineer
      • Semantic Web Evangelist
      • http://blogs.sun.com/bblfish
        • Sun Microsystem
    photo by prakharevich
  2. Overview
    • Description of the Social Networking problem
    • Why this is no longer “ somebody else's problem ”: a hyper address book
    • The functioning of the Address Book
    • How to add distributed decentralized security
    • A final thought: how this changes the desktop paradigm
  3. Too many Social Networks? ...are there too many web servers?
  4. The Problem: data silos
    • SN don't link up:
      • Information can't be moved easily (see: Data Portability the video )
      • Users have to create and maintain accounts on each SN they have friends on, or loose contacts
    • Growing number of social networks (SN)
      • because there are a lot of $$$ to be made
      • because there are many needs
      • there will never be one SN to rule them all.
  5. Scoble gets thrown off Facebook! In early January 2008 Scoble, the developer who got blogging going at Microsoft, got thrown off Facebook for extracting information too agressively from his social network on Facebook. This is the Facebook who asked users for their gmail password to extract all their contacts from their email! see his video
  6. An (evolving) Social Graph
    • relates many different things
      • people to information about them
        • name
        • address
        • phone number
      • relations between people:
        • who knows who
        • who worked with who
      • relations with external things
        • blogs
        • companies
  7. Two social Networks how can Tim and Henry link up ?
  8. Solution 1: minimal naïve approach but within each SN queries are very limited: e.g.: in Network A, nobody can query for Tim's address
  9. Solution 2: copy some information
    • how to copy the data? Data Portability? (DRY principle?)
    • how to keep the relations up to date?! Twice as much work.
    • queries still limited: what are the friends of Tim's friends?
  10. Solution 3: copy all
    • technically impossible: does not scale as networks grow in size and number:
          • how to keep information up to date?
          • amount of synchronization grows exponentially
    • politically impossible: S.N. are very protective of their data + privacy issues + oligopoly issues
  11. The pull to one network Due to Metcalf's law : the larger the network the more valuable it becomes. But why does it have to be in one database? Because each database has its own LOCAL POINTER mechanism, just like every Java virtual Machine has a local pointer mechanism. You cannot easily point from one JVM/DB into another. What if we had one big world wide database? we would need universal names for things. URIs?
  12. The Solution: linking across social networks requires a global namespace
  13. The Solution: a closer look
    • objects and documents have URLs
    • Relations also have URLs: foaf:knows , foaf:name
    • The Self Describing Web
  14. A hyperdata Address Book
  15. 1. first launch of jnlp
  16. 2. drag and drop a foaf file url
  17. 3. click on the first name in the first column
  18. 4. explore the second column
  19. 5. press the space bar on the keyboard...
  20. 6. positioning with NASA's World Wind
  21. 7. Sun Intranet Foaf experiment
  22. Foaf: Friend of a Friend
  23. Advantages
    • Open Social Network – no data silos
    • Information about people is always up to date (an HTTP GET away)
      • this could be used to keep up to date on where friends are
    • It is easy to publish a foaf file: one click away
    • Drag and drop friends
    • security: some ideas at the end of the talk
  24. Two foaf files on the internet
  25. Well, what we really have is
  26. Well, what we really have is in graph view
  27. The graphs inside the Beatnik Database
  28. Networked graphs: A merged view
  29. SPARQL: semantic query lang
      • PREFIX foaf: <http://xmlns.com/foaf/0.1/>
      • SELECT ?p
      • WHERE {
      • ?p foaf:knows ?q .
      • }
  30. SPARQL construct query PREFIX xsd: <http://www.w3.org/2001/XMLSchema#> CONSTRUCT { ?subject ?relation ?object . } WHERE { GRAPH ?g { ?subject ?relation ?object . } ?g :fetched-at ?date . FILTER { ?date < “2008-03-30”^^xsd:date } } This CONSTRUCT query can be used to construct a graph that is a union of all graphs that were fetched after march 2008.
  31. Networked Graphs: SPARQL Rules PREFIX owl: < http://www.w3.org/2002/07/owl #> CONSTRUCT { ?b owl:sameAs ?a . } WHERE { ?a owl:sameAs ?b . FILTER ( ! SAMETERM(?a , ?b) ) } CONSTRUCT queries can also be thought of as rules. Here is the well known rule of symmetry of identity. Simon Schenk's Networked Graphs can have a number of rules expressed as SPARQL CONSTRUCT queries, which works nicely with the Sesame semantic engine.
  32. merging identities PREFIX owl: < http://www.w3.org/2002/07/owl #> PREFIX foaf: < http://xmlns.com/foaf/0.1/ > CONSTRUCT { ?a owl:sameAs ?b . } WHERE { ?a foaf:homepage ?pg . ?b foaf:homepage ?pg . FILTER ( ! SAMETERM (?a , ?b)) } The rule that if we have two names for people that have the same homepage, then the two names refer to the same person. There are more general ways of stating this btw.
  33. Security: 3 approaches
    • Simple Firewall based security
    • OpenId based Security
    • Even simpler SSL based security
  34. Firewall protection
  35. Protecting resources with OpenId
  36. Protected Resources
    • :me a foaf:Person;
    • foaf:name “Henry Story”;
    • rdfs:seeAlso </protected/henry> .
    • </protected/henry> openid:login </openidAuth.cgi> .
    • This is trying to say that in order to access the protected resource one needs to login with openid first.
    • This is a sketch of such a vocabulary
  37. OpenId continued
  38. foaf+ssl: even simpler
  39. Protected Resources
    • :me a foaf:Person;
    • foaf:name “Henry Story”;
    • rdfs:seeAlso <https://.../protected/henry> .
    • notice the seeAlso is now an https url
  40. foaf+ssl: even simpler
  41. X509 certificate Certificate: Data: Version: 3 (0x2) Serial Number: 1 (0x1) Signature Algorithm: dsaWithSHA1 Issuer: O=OpenPGP to X.509 Bridge, OU=RDFauth Test, CN=Henry Story <henry.story@bblfish.net> Validity Not Before: Dec 12 21:49:50 2007 GMT Not After : Dec 6 21:49:50 2008 GMT Subject: O=OpenPGP to X.509 Bridge, OU=RDFauth Test, CN=Henry Story <henry.story@bblfish.net> Subject Public Key Info: Public Key Algorithm: dsaEncryption DSA Public Key: pub: 33:41:...
  42. X509 certificate with id X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Digital Signature, Non Repudiation, Key Encipherment, Key Agreement, Certificate Sign Netscape Cert Type: SSL Client, S/MIME X509v3 Subject Key Identifier: 45:DC:F9:10:33:C0:45:28:EA:90:6E:83:73:06:6F:51:21:89:13:DD X509v3 Authority Key Identifier: keyid:45:DC:F9:10:33:C0:45:28:EA:90:6E:83:73:06:6F:51:21:89:13:DD X509v3 Subject Alternative Name: URI:http://bblfish.net/people/henry/card#me Signature Algorithm: dsaWithSHA1 30:2c:02:14:78:69:1e:4f:7d:37:36:a5:8f:37:30:58:18:5a: f6:10:e9:13:a4:ec:02:14:03:93:42:3b:c0:d4:33:63:ae:2f: eb:8c:11:08:1c:aa:93:7d:71:01
  43. Very Simple Authentication
  44. The Semantic Desktop
  45. some references
    • Getting Started With RDF
    • The Semantic Address Book web site

+ Henry StoryHenry Story, 2 years ago

custom

6883 views, 25 favs, 7 embeds more stats

How to Build Open Distributed Social Networks with more

More info about this document

CC Attribution-ShareAlike LicenseCC Attribution-ShareAlike License

Go to text version

  • Total Views 6883
    • 6302 on SlideShare
    • 581 from embeds
  • Comments 15
  • Favorites 25
  • Downloads 427
Most viewed embeds
  • 568 views on http://blogs.sun.com
  • 7 views on http://www.boabinteractive.com.au
  • 2 views on http://demo.openlinksw.com
  • 1 views on http://s3.amazonaws.com
  • 1 views on http://wildfire.gigya.com

more

All embeds
  • 568 views on http://blogs.sun.com
  • 7 views on http://www.boabinteractive.com.au
  • 2 views on http://demo.openlinksw.com
  • 1 views on http://s3.amazonaws.com
  • 1 views on http://wildfire.gigya.com
  • 1 views on http://74.125.93.132
  • 1 views on http://static.slideshare.net

less

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate. If needed, use the feedback form to let us know more details.

Cancel
File a copyright complaint
Having problems? Go to our helpdesk?

Categories

Tags

more

Groups / Events

Looking for?

-->
Search
RSS Feed
What's new?

© 2009 SlideShare Inc. All Rights Reserved