SlideShare a Scribd company logo

Nicoletta Fornara and Fabio Marfia | Modeling and Enforcing Access Control Obligations for SPARQL-DL Queries

S
semanticsconference

This document discusses modeling and enforcing access control obligations for SPARQL-DL queries. It proposes an approach using formal specifications of obligations to define fine-grained access control for inferred data in OWL 2 DL ontologies. An obligation enforcement module sits as a middle layer, rewriting queries before execution and enforcing obligations on results by modifying returned data based on obligation definitions. The approach allows complex queries while protecting inferred data through reasoning about access control conditions.

Technology
1 of 30
Download to read offline
Nicoletta Fornara, Fabio Marfia Università della Svizzera italiana (USI) – http://www.usi.ch 13th September 2016 Modeling and Enforcing Access Control Obligations for SPARQL-DL queries
13/09/2016 Page 2/27 Università della Svizzera italiana (USI) SPARQL-DL… hey, what? SPARQL-DL is a SPARQL-like query language for conjunctive ABox-RBox-TBox queries for OWL 2 DL ontologies It is thought to be as much similar as possible to SPARQL, while allowing complex queries on the knowledge that can be inferred from an OWL 2 ontology using standard DL reasoning algorithms A formal description can be found in E. Sirin and B. Parsia. SPARQL-DL: SPARQL Query for OWL-DL. Proceedings of the Third International Workshop on OWL: Experiences and Directions (OWLED '07). A Java prototype of a SPARQL-DL query interface for OWL 2 has been developed by the DERIVO company (2009)
13/09/2016 Page 3/27 Università della Svizzera italiana (USI) Examples of SPARQL-DL queries Get all Classes: SELECT ?c WHERE { Class(?c) } Ask class A is a subclass of B: ASK { SubClassOf(ex:A, ex:B) } Get all transitive properties that have John as subject: SELECT ?p WHERE { PropertyValue(ex:john, ?p, ?o), Transitive(?p)}
13/09/2016 Page 4/27 Università della Svizzera italiana (USI) AND, OR operands Conjunctive conditions are expressed with the use of a comma separator, as in the last example Disjunctive conditions can be expressed with the OR WHERE clause Get all transitive or symmetric properties that have John as subject: SELECT ?p WHERE { PropertyValue(ex:john, ?p, ?o), Transitive(?p)} OR WHERE { PropertyValue(ex:john, ?p, ?o), Symmetric(?p)}
13/09/2016 Page 5/27 Università della Svizzera italiana (USI) SPARQL-DL syntax The SPARQL-DL query language allows the expression of composite conjunctions and disjunctions between 18 different atoms: Type(a,C) ProperyValue(a,p,v) SameAs(a,b) DifferentFrom(a,b) EquivalentClass(C1,C2) SubClassOf(C1,C2) DisjointWith(C1,C2) ComplementOf(C1,C2) EquivalentProperty(p1,p2) SubPropertyOf(p1,p2) InverseOf(p1,p2) ObjectProperty(p) DatatypeProperty(p) Functional(p) InverseFunctional(p) Transitive(p) Symmetric(p) Annotation(s,p,o)
13/09/2016 Page 6/27 Università della Svizzera italiana (USI) Managing Access Control for DL Inferred Knowledge Different works specify techniques for managing high level and fine-grained access control for RDF graphs Such works do not rely on reasoning algorithms for protecting data. But using the specification of complex DL expressions for identifying the different pieces of data to be protected appears to represent an interesting approach, as already showed by Sacco et al. (2011), Masoumzadeh et al. (2011) This is the first time that such interesting approach is applied to a SPARQL-DL query interface
13/09/2016 Page 7/27 Università della Svizzera italiana (USI) Why applying Access Control paradigms to a SPARQL-DL query interface? ? 1. It allows mixed ABox-RBox-TBox queries that can not be handled by other query languages 2. It has a clear syntax and semantics 3. The SPARQL-DL Java API released by the DERIVO company is available under LGPL license 4. The same reasoner instance that is used to obtain the results of a SPARQL-DL query can be used for inferring fine-grained access permissions
13/09/2016 Page 8/27 Università della Svizzera italiana (USI) Our chosen Access Control approach: Formal Specification of Obligations We define the general form of an obligation O as a triple O = <D, A, C> Where D is a description of the requesting user, A is the activation condition of the obligation and C the content of the obligation The activation condition of the obligation is the formal specification of a set of condition according to which the obligation activates, in the form of a set of logical axioms The content of the policy is the set of actions that have to be performed as a consequence of the activation of the obligation
13/09/2016 Page 9/27 Università della Svizzera italiana (USI) Obligation Definition Example (Hospital Use Case) When a user submits a query for statistical purposes, the ID of patients with a diabetic disease have to be anonymized In our O = <D, A, C> paradigm, D is a description of the requesting user, as, e.g., a statisticalPurposes attribute (we did not focus on such part) A can be a DL Class axiom identifying each patient with a diabetic disease: Class: AC01 SubClassOf: AC EquivalentTo: Patient and hasRecord some (hasInfoAbout value diabetes)
13/09/2016 Page 10/27 Università della Svizzera italiana (USI) Obligation Definition Example (Hospital Use Case) C is a pre-defined function to be called passing as an argument p each piece of data identified by the class AC01: C = anonymize(p, someAnonimizationAlgorithm) We identified three main types of content functions in our experiments. Such list can be extended: Remove(p) Anonymize(p, someAnonimizationAlgorithm) WriteLogEvent(requestingUser, p, timestamp)
13/09/2016 Page 11/27 Università della Svizzera italiana (USI) Obligation Enforcement Module: An Access Control Middle-Layer
13/09/2016 Page 12/27 Università della Svizzera italiana (USI) Obligation Enforcement in 4 steps 1. When the Access Control Layer receives a SPARQL-DL query, it is rewritten before submitting it to the final endpoint, in order to retrieve the access control conditions also for each piece of returned data 2. The modified query is submitted to the SPARQL-DL endpoint and executed on both collections of original data and activation conditions 3. The result is returned to the Access Control Layer. Each piece of data on which an obligation is active, is changed according to each obligation content function. 4. The final result is returned to the Data Consumer
13/09/2016 Page 13/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable and individual in the query, information must be added in order to retrieve the conditions that are active for each piece of data Example query: identifying all people living in Oxford or Birmingham SELECT ?x WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)}
13/09/2016 Page 14/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable in in each WHERE clause, another WHERE clause is added for identifying its activated conditions. Example: SELECT ?x WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)}
13/09/2016 Page 15/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable in in each WHERE clause, another WHERE clause is added for identifying its activated conditions. Example: SELECT ?x, ?xAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person), SubClassOf(?xAC, AC), Type(?x, ?xAC)}
13/09/2016 Page 16/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable in in each WHERE clause, another WHERE clause is added for identifying its activated conditions. Example: SELECT ?x, ?xAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person), SubClassOf(?xAC, AC), Type(?x, ?xAC)}
13/09/2016 Page 17/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each named individual, a WHERE clause is added for identifying its own activated conditions: SELECT ?x, ?xAC, ?oxfAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {SubClassOf(?oxfAC, AC), Type(oxford, ?oxfAC)}
13/09/2016 Page 18/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each named individual, a WHERE clause is added for identifying its own activated conditions: SELECT ?x, ?xAC, ?oxfAC, ?birAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {SubClassOf(?birAC, AC), Type(birmingham, ?birAC)}
13/09/2016 Page 19/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each named individual, a WHERE clause is added for identifying its own activated conditions: SELECT ?x, ?xAC, ?oxfAC, ?birAC, ?perAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {SubClassOf(?perAC, AC), SubClassOf(Person, ?perAC)}
13/09/2016 Page 20/27 Università della Svizzera italiana (USI) 2. Enhanced response The query rewriting process obtains a query having as results all the results of the original query, plus the information about the activated conditions on each piece of data Sample response for the presented original query ?x bob carl alice eleanor donald
13/09/2016 Page 21/27 Università della Svizzera italiana (USI) 2. Enhanced response Sample enhanced response ?x ?xAC ?oxfAC ?birAC ?perAC bob carl alice eleanor donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03
13/09/2016 Page 22/27 Università della Svizzera italiana (USI) 3. Obligation Enforcement The table is splitted into two sets ?x ?xAC ?oxfAC ?birAC ?perAC bob carl alice eleanor donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03 Standard Response Enforcement directives
13/09/2016 Page 23/27 Università della Svizzera italiana (USI) 3. Obligation Enforcement Data is changed in the standard response according to obligations functions (e.g. bob is removed…) ?x ?xAC ?oxfAC ?birAC ?perAC bob carl alice anonym01 donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03 Standard Response Enforcement directives WriteLogAnonymize Remove
13/09/2016 Page 24/27 Università della Svizzera italiana (USI) 3. Obligation Enforcement Data is changed in the standard response according to obligations functions (e.g. bob is removed…) ?x ?xAC ?oxfAC ?birAC ?perAC alice anonym01 donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03 Standard Response Enforcement directives
13/09/2016 Page 25/27 Università della Svizzera italiana (USI) 4. Final Response Enforcement directives are removed ?x ?xAC ?oxfAC ?birAC ?perAC alice anonym01 donald Original variables Access Control Variables
13/09/2016 Page 26/27 Università della Svizzera italiana (USI) 4. Final Response Access Control variables are removed ?x alice anonym01 donald That is our Final response
13/09/2016 Page 27/27 Università della Svizzera italiana (USI) Performances
13/09/2016 Page 28/27 Università della Svizzera italiana (USI) Conclusion and Future Work We presented an approach for defining and enforcing expressive data provider obligations for performing fine- grained protection on OWL 2 DL data A private-by-default environment can be chosen, permissions can be expressed at the same manner as the proposed obligations, and introducing a little change in the enforcement algorithm The concept of Institutional power for generating policies can be added, by studying its relationship with the proposed model DL policies can be transmitted as Sticky Policies
Nicoletta Fornara, Fabio Marfia Università della Svizzera italiana (USI) – http://www.usi.ch 13th September 2016 Modeling and Enforcing Access Control Obligations for SPARQL-DL queries
13/09/2016 Page 30/27 Università della Svizzera italiana (USI) Citations E. Sirin and B. Parsia. SPARQL-DL: SPARQL Query for OWL-DL. Proceedings of the Third International Workshop on OWL: Experiences and Directions (OWLED '07) O. Sacco, A. Passant, and S. Decker: An access control framework for the web of data. In 2011IEEE 10th International Conference on Trust, Security and Privacy in Computing and Communications (2011) A. Masoumzadeh and J. Joshi: Ontology-based access control for social network systems. IJIPSI (2015) T. T. Nguyen, N. Fornara, and F.Marfia: Automatic policy enforcement on semantic social data. Multiagent and Grid Systems Journal (2015)

Recommended

Sören Auer | Enterprise Knowledge Graphs
Sören Auer | Enterprise Knowledge GraphsSören Auer | Enterprise Knowledge Graphs
Sören Auer | Enterprise Knowledge Graphssemanticsconference
 
LDOW2015 Position Talk and Discussion
LDOW2015 Position Talk and DiscussionLDOW2015 Position Talk and Discussion
LDOW2015 Position Talk and DiscussionSören Auer
 
The Bounties of Semantic Data Integration for the Enterprise
The Bounties of Semantic Data Integration for the Enterprise The Bounties of Semantic Data Integration for the Enterprise
The Bounties of Semantic Data Integration for the Enterprise Ontotext
 
Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...
Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...
Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...semanticsconference
 
Introduction to the Data Web, DBpedia and the Life-cycle of Linked Data
Introduction to the Data Web, DBpedia and the Life-cycle of Linked DataIntroduction to the Data Web, DBpedia and the Life-cycle of Linked Data
Introduction to the Data Web, DBpedia and the Life-cycle of Linked DataSören Auer
 
Linked Data Experiences at Springer Nature
Linked Data Experiences at Springer NatureLinked Data Experiences at Springer Nature
Linked Data Experiences at Springer NatureMichele Pasin
 
Smart Data Applications powered by the Wikidata Knowledge Graph
Smart Data Applications powered by the Wikidata Knowledge GraphSmart Data Applications powered by the Wikidata Knowledge Graph
Smart Data Applications powered by the Wikidata Knowledge GraphPeter Haase
 
Getting Started with Knowledge Graphs
Getting Started with Knowledge GraphsGetting Started with Knowledge Graphs
Getting Started with Knowledge GraphsPeter Haase
 

Recommended

Sören Auer | Enterprise Knowledge Graphs
Sören Auer | Enterprise Knowledge GraphsSören Auer | Enterprise Knowledge Graphs
Sören Auer | Enterprise Knowledge Graphssemanticsconference
 
LDOW2015 Position Talk and Discussion
LDOW2015 Position Talk and DiscussionLDOW2015 Position Talk and Discussion
LDOW2015 Position Talk and DiscussionSören Auer
 
The Bounties of Semantic Data Integration for the Enterprise
The Bounties of Semantic Data Integration for the Enterprise The Bounties of Semantic Data Integration for the Enterprise
The Bounties of Semantic Data Integration for the Enterprise Ontotext
 
Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...
Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...
Robert Isele | eccenca CorporateMemory - Semantically integrated Enterprise D...semanticsconference
 
Introduction to the Data Web, DBpedia and the Life-cycle of Linked Data
Introduction to the Data Web, DBpedia and the Life-cycle of Linked DataIntroduction to the Data Web, DBpedia and the Life-cycle of Linked Data
Introduction to the Data Web, DBpedia and the Life-cycle of Linked DataSören Auer
 
Linked Data Experiences at Springer Nature
Linked Data Experiences at Springer NatureLinked Data Experiences at Springer Nature
Linked Data Experiences at Springer NatureMichele Pasin
 
Smart Data Applications powered by the Wikidata Knowledge Graph
Smart Data Applications powered by the Wikidata Knowledge GraphSmart Data Applications powered by the Wikidata Knowledge Graph
Smart Data Applications powered by the Wikidata Knowledge GraphPeter Haase
 
Getting Started with Knowledge Graphs
Getting Started with Knowledge GraphsGetting Started with Knowledge Graphs
Getting Started with Knowledge GraphsPeter Haase
 
Data analysis in dataverse & visualization of datasets on historical maps
Data analysis in dataverse & visualization of datasets on historical mapsData analysis in dataverse & visualization of datasets on historical maps
Data analysis in dataverse & visualization of datasets on historical mapsvty
 
Ephedra: efficiently combining RDF data and services using SPARQL federation
Ephedra: efficiently combining RDF data and services using SPARQL federationEphedra: efficiently combining RDF data and services using SPARQL federation
Ephedra: efficiently combining RDF data and services using SPARQL federationPeter Haase
 
ESWC 2017 Tutorial Knowledge Graphs
ESWC 2017 Tutorial Knowledge GraphsESWC 2017 Tutorial Knowledge Graphs
ESWC 2017 Tutorial Knowledge GraphsPeter Haase
 
HDL - Towards A Harmonized Dataset Model for Open Data Portals
HDL - Towards A Harmonized Dataset Model for Open Data PortalsHDL - Towards A Harmonized Dataset Model for Open Data Portals
HDL - Towards A Harmonized Dataset Model for Open Data PortalsAhmad Assaf
 
Scalable and privacy-preserving data integration - part 1
Scalable and privacy-preserving data integration - part 1Scalable and privacy-preserving data integration - part 1
Scalable and privacy-preserving data integration - part 1ErhardRahm
 
Wed roman tut_open_datapub
Wed roman tut_open_datapubWed roman tut_open_datapub
Wed roman tut_open_datapubeswcsummerschool
 
Discovering Related Data Sources in Data Portals
Discovering Related Data Sources in Data PortalsDiscovering Related Data Sources in Data Portals
Discovering Related Data Sources in Data PortalsPeter Haase
 
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...datascienceiqss
 
Hybrid Enterprise Knowledge Graphs
Hybrid Enterprise Knowledge GraphsHybrid Enterprise Knowledge Graphs
Hybrid Enterprise Knowledge GraphsPeter Haase
 
Querying the Wikidata Knowledge Graph
Querying the Wikidata Knowledge GraphQuerying the Wikidata Knowledge Graph
Querying the Wikidata Knowledge GraphIoan Toma
 
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...Ontotext
 
Interaction with Linked Data
Interaction with Linked DataInteraction with Linked Data
Interaction with Linked DataEUCLID project
 
Providing Linked Data
Providing Linked DataProviding Linked Data
Providing Linked DataEUCLID project
 
Das Semantische Daten Web für Unternehmen
Das Semantische Daten Web für UnternehmenDas Semantische Daten Web für Unternehmen
Das Semantische Daten Web für UnternehmenSören Auer
 
Knowledge Graph Introduction
Knowledge Graph IntroductionKnowledge Graph Introduction
Knowledge Graph IntroductionSören Auer
 
The CIARD RINGValeri
The CIARD RINGValeriThe CIARD RINGValeri
The CIARD RINGValeriCIARD Movement
 
ROI in Linking Content to CRM by Applying the Linked Data Stack
ROI in Linking Content to CRM by Applying the Linked Data StackROI in Linking Content to CRM by Applying the Linked Data Stack
ROI in Linking Content to CRM by Applying the Linked Data StackMartin Voigt
 
scopeKM: Text analysis with Triples
scopeKM: Text analysis with TriplesscopeKM: Text analysis with Triples
scopeKM: Text analysis with TriplesscopeKM GmbH Knowledge Management
 
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven RecipesReasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven RecipesOntotext
 
Methodology for the publication of Linked Open Data from small and medium siz...
Methodology for the publication of Linked Open Data from small and medium siz...Methodology for the publication of Linked Open Data from small and medium siz...
Methodology for the publication of Linked Open Data from small and medium siz...International Federation for Information Technologies in Travel and Tourism (IFITT)
 
Chalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
Chalitha Perera | Cross Media Concept and Entity Driven Search for EnterpriseChalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
Chalitha Perera | Cross Media Concept and Entity Driven Search for Enterprisesemanticsconference
 
Kostas Kastrantas | Business Opportunities with Linked Open Data
Kostas Kastrantas | Business Opportunities with Linked Open DataKostas Kastrantas | Business Opportunities with Linked Open Data
Kostas Kastrantas | Business Opportunities with Linked Open Datasemanticsconference
 

More Related Content

What's hot

Data analysis in dataverse & visualization of datasets on historical maps
Data analysis in dataverse & visualization of datasets on historical mapsData analysis in dataverse & visualization of datasets on historical maps
Data analysis in dataverse & visualization of datasets on historical mapsvty
 
Ephedra: efficiently combining RDF data and services using SPARQL federation
Ephedra: efficiently combining RDF data and services using SPARQL federationEphedra: efficiently combining RDF data and services using SPARQL federation
Ephedra: efficiently combining RDF data and services using SPARQL federationPeter Haase
 
ESWC 2017 Tutorial Knowledge Graphs
ESWC 2017 Tutorial Knowledge GraphsESWC 2017 Tutorial Knowledge Graphs
ESWC 2017 Tutorial Knowledge GraphsPeter Haase
 
HDL - Towards A Harmonized Dataset Model for Open Data Portals
HDL - Towards A Harmonized Dataset Model for Open Data PortalsHDL - Towards A Harmonized Dataset Model for Open Data Portals
HDL - Towards A Harmonized Dataset Model for Open Data PortalsAhmad Assaf
 
Scalable and privacy-preserving data integration - part 1
Scalable and privacy-preserving data integration - part 1Scalable and privacy-preserving data integration - part 1
Scalable and privacy-preserving data integration - part 1ErhardRahm
 
Wed roman tut_open_datapub
Wed roman tut_open_datapubWed roman tut_open_datapub
Wed roman tut_open_datapubeswcsummerschool
 
Discovering Related Data Sources in Data Portals
Discovering Related Data Sources in Data PortalsDiscovering Related Data Sources in Data Portals
Discovering Related Data Sources in Data PortalsPeter Haase
 
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...datascienceiqss
 
Hybrid Enterprise Knowledge Graphs
Hybrid Enterprise Knowledge GraphsHybrid Enterprise Knowledge Graphs
Hybrid Enterprise Knowledge GraphsPeter Haase
 
Querying the Wikidata Knowledge Graph
Querying the Wikidata Knowledge GraphQuerying the Wikidata Knowledge Graph
Querying the Wikidata Knowledge GraphIoan Toma
 
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...Ontotext
 
Interaction with Linked Data
Interaction with Linked DataInteraction with Linked Data
Interaction with Linked DataEUCLID project
 
Das Semantische Daten Web für Unternehmen
Das Semantische Daten Web für UnternehmenDas Semantische Daten Web für Unternehmen
Das Semantische Daten Web für UnternehmenSören Auer
 
Knowledge Graph Introduction
Knowledge Graph IntroductionKnowledge Graph Introduction
Knowledge Graph IntroductionSören Auer
 
ROI in Linking Content to CRM by Applying the Linked Data Stack
ROI in Linking Content to CRM by Applying the Linked Data StackROI in Linking Content to CRM by Applying the Linked Data Stack
ROI in Linking Content to CRM by Applying the Linked Data StackMartin Voigt
 
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven RecipesReasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven RecipesOntotext
 

What's hot (20)

Data analysis in dataverse & visualization of datasets on historical maps
Data analysis in dataverse & visualization of datasets on historical mapsData analysis in dataverse & visualization of datasets on historical maps
Data analysis in dataverse & visualization of datasets on historical maps
 
Ephedra: efficiently combining RDF data and services using SPARQL federation
Ephedra: efficiently combining RDF data and services using SPARQL federationEphedra: efficiently combining RDF data and services using SPARQL federation
Ephedra: efficiently combining RDF data and services using SPARQL federation
 
ESWC 2017 Tutorial Knowledge Graphs
ESWC 2017 Tutorial Knowledge GraphsESWC 2017 Tutorial Knowledge Graphs
ESWC 2017 Tutorial Knowledge Graphs
 
HDL - Towards A Harmonized Dataset Model for Open Data Portals
HDL - Towards A Harmonized Dataset Model for Open Data PortalsHDL - Towards A Harmonized Dataset Model for Open Data Portals
HDL - Towards A Harmonized Dataset Model for Open Data Portals
 
Scalable and privacy-preserving data integration - part 1
Scalable and privacy-preserving data integration - part 1Scalable and privacy-preserving data integration - part 1
Scalable and privacy-preserving data integration - part 1
 
Wed roman tut_open_datapub
Wed roman tut_open_datapubWed roman tut_open_datapub
Wed roman tut_open_datapub
 
Discovering Related Data Sources in Data Portals
Discovering Related Data Sources in Data PortalsDiscovering Related Data Sources in Data Portals
Discovering Related Data Sources in Data Portals
 
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
Data FAIRport Skunkworks: Common Repository Access Via Meta-Metadata Descript...
 
Hybrid Enterprise Knowledge Graphs
Hybrid Enterprise Knowledge GraphsHybrid Enterprise Knowledge Graphs
Hybrid Enterprise Knowledge Graphs
 
Querying the Wikidata Knowledge Graph
Querying the Wikidata Knowledge GraphQuerying the Wikidata Knowledge Graph
Querying the Wikidata Knowledge Graph
 
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
[Webinar] FactForge Debuts: Trump World Data and Instant Ranking of Industry ...
 
Interaction with Linked Data
Interaction with Linked DataInteraction with Linked Data
Interaction with Linked Data
 
Providing Linked Data
Providing Linked DataProviding Linked Data
Providing Linked Data
 
Das Semantische Daten Web für Unternehmen
Das Semantische Daten Web für UnternehmenDas Semantische Daten Web für Unternehmen
Das Semantische Daten Web für Unternehmen
 
Knowledge Graph Introduction
Knowledge Graph IntroductionKnowledge Graph Introduction
Knowledge Graph Introduction
 
The CIARD RINGValeri
The CIARD RINGValeriThe CIARD RINGValeri
The CIARD RINGValeri
 
ROI in Linking Content to CRM by Applying the Linked Data Stack
ROI in Linking Content to CRM by Applying the Linked Data StackROI in Linking Content to CRM by Applying the Linked Data Stack
ROI in Linking Content to CRM by Applying the Linked Data Stack
 
scopeKM: Text analysis with Triples
scopeKM: Text analysis with TriplesscopeKM: Text analysis with Triples
scopeKM: Text analysis with Triples
 
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven RecipesReasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
Reasoning with Big Knowledge Graphs: Choices, Pitfalls and Proven Recipes
 
Methodology for the publication of Linked Open Data from small and medium siz...
Methodology for the publication of Linked Open Data from small and medium siz...Methodology for the publication of Linked Open Data from small and medium siz...
Methodology for the publication of Linked Open Data from small and medium siz...
 

Viewers also liked

Chalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
Chalitha Perera | Cross Media Concept and Entity Driven Search for EnterpriseChalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
Chalitha Perera | Cross Media Concept and Entity Driven Search for Enterprisesemanticsconference
 
Kostas Kastrantas | Business Opportunities with Linked Open Data
Kostas Kastrantas | Business Opportunities with Linked Open DataKostas Kastrantas | Business Opportunities with Linked Open Data
Kostas Kastrantas | Business Opportunities with Linked Open Datasemanticsconference
 
Christian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web Applications
Christian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web ApplicationsChristian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web Applications
Christian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web Applicationssemanticsconference
 
Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...
Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...
Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...semanticsconference
 
Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...
Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...
Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...semanticsconference
 
Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...
Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...
Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...semanticsconference
 
David Kuilman | Creating a Semantic Enterprise Content model to support conti...
David Kuilman | Creating a Semantic Enterprise Content model to support conti...David Kuilman | Creating a Semantic Enterprise Content model to support conti...
David Kuilman | Creating a Semantic Enterprise Content model to support conti...semanticsconference
 
Victor Charpenay | Standardized Semantics for an Open Web of Things
Victor Charpenay | Standardized Semantics for an Open Web of ThingsVictor Charpenay | Standardized Semantics for an Open Web of Things
Victor Charpenay | Standardized Semantics for an Open Web of Thingssemanticsconference
 
OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...
OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...
OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...semanticsconference
 
Thomas Vavra | New Ways of Handling Old Data
Thomas Vavra | New Ways of Handling Old DataThomas Vavra | New Ways of Handling Old Data
Thomas Vavra | New Ways of Handling Old Datasemanticsconference
 
Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...
Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...
Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...semanticsconference
 
Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...
Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...
Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...semanticsconference
 
Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...
Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...
Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...semanticsconference
 
Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...
Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...
Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...semanticsconference
 
Felix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINE
Felix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINEFelix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINE
Felix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINEsemanticsconference
 
Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...
Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...
Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...semanticsconference
 
Holger Wollschläger | E-government at its best: Open, transparent and useful
Holger Wollschläger | E-government at its best: Open, transparent and usefulHolger Wollschläger | E-government at its best: Open, transparent and useful
Holger Wollschläger | E-government at its best: Open, transparent and usefulsemanticsconference
 
Jo Kent | ADA – Opening up the BBC archive with linked data
Jo Kent | ADA – Opening up the BBC archive with linked dataJo Kent | ADA – Opening up the BBC archive with linked data
Jo Kent | ADA – Opening up the BBC archive with linked datasemanticsconference
 
Linked data the next 5 years - From Hype to Action
Linked data the next 5 years - From Hype to ActionLinked data the next 5 years - From Hype to Action
Linked data the next 5 years - From Hype to ActionAndreas Blumauer
 
Consuming Linked Data SemTech2010
Consuming Linked Data SemTech2010Consuming Linked Data SemTech2010
Consuming Linked Data SemTech2010Juan Sequeda
 

Viewers also liked (20)

Chalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
Chalitha Perera | Cross Media Concept and Entity Driven Search for EnterpriseChalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
Chalitha Perera | Cross Media Concept and Entity Driven Search for Enterprise
 
Kostas Kastrantas | Business Opportunities with Linked Open Data
Kostas Kastrantas | Business Opportunities with Linked Open DataKostas Kastrantas | Business Opportunities with Linked Open Data
Kostas Kastrantas | Business Opportunities with Linked Open Data
 
Christian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web Applications
Christian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web ApplicationsChristian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web Applications
Christian Opitz | Semantic E-Commerce - Use Cases in Enterprise Web Applications
 
Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...
Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...
Shuangyong Song, Qingliang Miao and Yao Meng | Linking Images to Semantic Kno...
 
Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...
Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...
Stephen Buxton | Data Integration - a Multi-Model Approach - Documents and Tr...
 
Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...
Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...
Ben Gardner | Delivering a Linked Data warehouse and integrating across the w...
 
David Kuilman | Creating a Semantic Enterprise Content model to support conti...
David Kuilman | Creating a Semantic Enterprise Content model to support conti...David Kuilman | Creating a Semantic Enterprise Content model to support conti...
David Kuilman | Creating a Semantic Enterprise Content model to support conti...
 
Victor Charpenay | Standardized Semantics for an Open Web of Things
Victor Charpenay | Standardized Semantics for an Open Web of ThingsVictor Charpenay | Standardized Semantics for an Open Web of Things
Victor Charpenay | Standardized Semantics for an Open Web of Things
 
OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...
OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...
OWL-based validation by Gavin Mendel Gleasonand Bojan Bozic, Trinity College,...
 
Thomas Vavra | New Ways of Handling Old Data
Thomas Vavra | New Ways of Handling Old DataThomas Vavra | New Ways of Handling Old Data
Thomas Vavra | New Ways of Handling Old Data
 
Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...
Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...
Fajar J. Ekaputra, Marta Sabou, Estefania Serral and Stefan Biffl | Knowledge...
 
Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...
Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...
Reginald Ford, Grit Denker, Daniel Elenius, Wesley Moore and Elie Abi-Lahoud ...
 
Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...
Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...
Tomas Knap | RDF Data Processing and Integration Tasks in UnifiedViews: Use C...
 
Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...
Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...
Georgios Meditskos and Stamatia Dasiopoulou | Question Answering over Pattern...
 
Felix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINE
Felix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINEFelix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINE
Felix Burkhardt | ARCHITECTURE FOR A QUESTION ANSWERING MACHINE
 
Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...
Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...
Vassilios Peristeras | Promoting Semantic Interoperability for European Publi...
 
Holger Wollschläger | E-government at its best: Open, transparent and useful
Holger Wollschläger | E-government at its best: Open, transparent and usefulHolger Wollschläger | E-government at its best: Open, transparent and useful
Holger Wollschläger | E-government at its best: Open, transparent and useful
 
Jo Kent | ADA – Opening up the BBC archive with linked data
Jo Kent | ADA – Opening up the BBC archive with linked dataJo Kent | ADA – Opening up the BBC archive with linked data
Jo Kent | ADA – Opening up the BBC archive with linked data
 
Linked data the next 5 years - From Hype to Action
Linked data the next 5 years - From Hype to ActionLinked data the next 5 years - From Hype to Action
Linked data the next 5 years - From Hype to Action
 
Consuming Linked Data SemTech2010
Consuming Linked Data SemTech2010Consuming Linked Data SemTech2010
Consuming Linked Data SemTech2010
 

Similar to Nicoletta Fornara and Fabio Marfia | Modeling and Enforcing Access Control Obligations for SPARQL-DL Queries

SemFacet paper
SemFacet paperSemFacet paper
SemFacet paperDBOnto
 
Sem facet paper
Sem facet paperSem facet paper
Sem facet paperDBOnto
 
SPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONS
SPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONSSPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONS
SPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONSIJNSA Journal
 
Sparql semantic information retrieval by
Sparql semantic information retrieval bySparql semantic information retrieval by
Sparql semantic information retrieval byIJNSA Journal
 
Deriving human readable labels from sparql queries
Deriving human readable labels from sparql queries Deriving human readable labels from sparql queries
Deriving human readable labels from sparql queries Basil Ell
 
Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012
Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012
Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012taxonbytes
 
Triplestore and SPARQL
Triplestore and SPARQLTriplestore and SPARQL
Triplestore and SPARQLLino Valdivia
 
Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...
Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...
Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...Stuart Chalk
 
OntoMaven Repositories and OMG API4KP
OntoMaven Repositories and OMG API4KPOntoMaven Repositories and OMG API4KP
OntoMaven Repositories and OMG API4KPAksw Group
 
Integrating a Domain Ontology Development Environment and an Ontology Search ...
Integrating a Domain Ontology Development Environment and an Ontology Search ...Integrating a Domain Ontology Development Environment and an Ontology Search ...
Integrating a Domain Ontology Development Environment and an Ontology Search ...Takeshi Morita
 
ACS 248th Paper 146 VIVO/ScientistsDB Integration into Eureka
ACS 248th Paper 146 VIVO/ScientistsDB Integration into EurekaACS 248th Paper 146 VIVO/ScientistsDB Integration into Eureka
ACS 248th Paper 146 VIVO/ScientistsDB Integration into EurekaStuart Chalk
 
OBA: An Ontology-Based Framework for Creating REST APIs for Knowledge Graphs
OBA: An Ontology-Based Framework for Creating REST APIs for Knowledge GraphsOBA: An Ontology-Based Framework for Creating REST APIs for Knowledge Graphs
OBA: An Ontology-Based Framework for Creating REST APIs for Knowledge Graphsdgarijo
 

Similar to Nicoletta Fornara and Fabio Marfia | Modeling and Enforcing Access Control Obligations for SPARQL-DL Queries (20)

Wi presentation
Wi presentationWi presentation
Wi presentation
 
SemFacet paper
SemFacet paperSemFacet paper
SemFacet paper
 
Sem facet paper
Sem facet paperSem facet paper
Sem facet paper
 
SPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONS
SPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONSSPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONS
SPARQL: SEMANTIC INFORMATION RETRIEVAL BY EMBEDDING PREPOSITIONS
 
Sparql semantic information retrieval by
Sparql semantic information retrieval bySparql semantic information retrieval by
Sparql semantic information retrieval by
 
eureka09
eureka09eureka09
eureka09
 
eureka09
eureka09eureka09
eureka09
 
Deriving human readable labels from sparql queries
Deriving human readable labels from sparql queries Deriving human readable labels from sparql queries
Deriving human readable labels from sparql queries
 
Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012
Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012
Franz et. al. 2012. Reconciling Succeeding Classifications, ESA 2012
 
Triplestore and SPARQL
Triplestore and SPARQLTriplestore and SPARQL
Triplestore and SPARQL
 
BioSD Tutorial 2014 Editition
BioSD Tutorial 2014 EdititionBioSD Tutorial 2014 Editition
BioSD Tutorial 2014 Editition
 
Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...
Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...
Toward Semantic Representation of Science in Electronic Laboratory Notebooks ...
 
OntoMaven Repositories and OMG API4KP
OntoMaven Repositories and OMG API4KPOntoMaven Repositories and OMG API4KP
OntoMaven Repositories and OMG API4KP
 
Integrating a Domain Ontology Development Environment and an Ontology Search ...
Integrating a Domain Ontology Development Environment and an Ontology Search ...Integrating a Domain Ontology Development Environment and an Ontology Search ...
Integrating a Domain Ontology Development Environment and an Ontology Search ...
 
ACS 248th Paper 146 VIVO/ScientistsDB Integration into Eureka
ACS 248th Paper 146 VIVO/ScientistsDB Integration into EurekaACS 248th Paper 146 VIVO/ScientistsDB Integration into Eureka
ACS 248th Paper 146 VIVO/ScientistsDB Integration into Eureka
 
Jpl presentation
Jpl presentationJpl presentation
Jpl presentation
 
Jpl presentation
Jpl presentationJpl presentation
Jpl presentation
 
Jpl presentation
Jpl presentationJpl presentation
Jpl presentation
 
OBA: An Ontology-Based Framework for Creating REST APIs for Knowledge Graphs
OBA: An Ontology-Based Framework for Creating REST APIs for Knowledge GraphsOBA: An Ontology-Based Framework for Creating REST APIs for Knowledge Graphs
OBA: An Ontology-Based Framework for Creating REST APIs for Knowledge Graphs
 
Web Spa
Web SpaWeb Spa
Web Spa
 

More from semanticsconference

Linear books to open world adventure
Linear books to open world adventureLinear books to open world adventure
Linear books to open world adventuresemanticsconference
 
Session 1.2 high-precision, context-free entity linking exploiting unambigu...
Session 1.2 high-precision, context-free entity linking exploiting unambigu...Session 1.2 high-precision, context-free entity linking exploiting unambigu...
Session 1.2 high-precision, context-free entity linking exploiting unambigu...semanticsconference
 
Session 4.3 semantic annotation for enhancing collaborative ideation
Session 4.3 semantic annotation for enhancing collaborative ideationSession 4.3 semantic annotation for enhancing collaborative ideation
Session 4.3 semantic annotation for enhancing collaborative ideationsemanticsconference
 
Session 1.1 dalicc - data licenses clearance center
Session 1.1 dalicc - data licenses clearance centerSession 1.1 dalicc - data licenses clearance center
Session 1.1 dalicc - data licenses clearance centersemanticsconference
 
Session 1.3 context information management across smart city knowledge domains
Session 1.3 context information management across smart city knowledge domainsSession 1.3 context information management across smart city knowledge domains
Session 1.3 context information management across smart city knowledge domainssemanticsconference
 
Session 0.0 aussenac semanticsnl-pwebsem2017-v4
Session 0.0 aussenac semanticsnl-pwebsem2017-v4Session 0.0 aussenac semanticsnl-pwebsem2017-v4
Session 0.0 aussenac semanticsnl-pwebsem2017-v4semanticsconference
 
Session 0.0 keynote sandeep sacheti - final hi res
Session 0.0 keynote sandeep sacheti - final hi resSession 0.0 keynote sandeep sacheti - final hi res
Session 0.0 keynote sandeep sacheti - final hi ressemanticsconference
 
Session 1.1 linked data applied: a field report from the netherlands
Session 1.1 linked data applied: a field report from the netherlandsSession 1.1 linked data applied: a field report from the netherlands
Session 1.1 linked data applied: a field report from the netherlandssemanticsconference
 
Session 1.2 enrich your knowledge graphs: linked data integration with pool...
Session 1.2 enrich your knowledge graphs: linked data integration with pool...Session 1.2 enrich your knowledge graphs: linked data integration with pool...
Session 1.2 enrich your knowledge graphs: linked data integration with pool...semanticsconference
 
Session 1.4 connecting information from legislation and datasets using a ca...
Session 1.4 connecting information from legislation and datasets using a ca...Session 1.4 connecting information from legislation and datasets using a ca...
Session 1.4 connecting information from legislation and datasets using a ca...semanticsconference
 
Session 1.4 a distributed network of heritage information
Session 1.4 a distributed network of heritage informationSession 1.4 a distributed network of heritage information
Session 1.4 a distributed network of heritage informationsemanticsconference
 
Session 0.0 media panel - matthias priem - gtuo - semantics 2017
Session 0.0 media panel - matthias priem - gtuo - semantics 2017Session 0.0 media panel - matthias priem - gtuo - semantics 2017
Session 0.0 media panel - matthias priem - gtuo - semantics 2017semanticsconference
 
Session 1.3 semantic asset management in the dutch rail engineering and con...
Session 1.3 semantic asset management in the dutch rail engineering and con...Session 1.3 semantic asset management in the dutch rail engineering and con...
Session 1.3 semantic asset management in the dutch rail engineering and con...semanticsconference
 
Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...
Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...
Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...semanticsconference
 
Session 1.2 improving access to digital content by semantic enrichment
Session 1.2 improving access to digital content by semantic enrichmentSession 1.2 improving access to digital content by semantic enrichment
Session 1.2 improving access to digital content by semantic enrichmentsemanticsconference
 
Session 2.3 semantics for safeguarding &amp; security – a police story
Session 2.3 semantics for safeguarding &amp; security – a police storySession 2.3 semantics for safeguarding &amp; security – a police story
Session 2.3 semantics for safeguarding &amp; security – a police storysemanticsconference
 
Session 2.5 semantic similarity based clustering of license excerpts for im...
Session 2.5 semantic similarity based clustering of license excerpts for im...Session 2.5 semantic similarity based clustering of license excerpts for im...
Session 2.5 semantic similarity based clustering of license excerpts for im...semanticsconference
 
Session 4.2 unleash the triple: leveraging a corporate discovery interface....
Session 4.2 unleash the triple: leveraging a corporate discovery interface....Session 4.2 unleash the triple: leveraging a corporate discovery interface....
Session 4.2 unleash the triple: leveraging a corporate discovery interface....semanticsconference
 
Session 1.6 slovak public metadata governance and management based on linke...
Session 1.6 slovak public metadata governance and management based on linke...Session 1.6 slovak public metadata governance and management based on linke...
Session 1.6 slovak public metadata governance and management based on linke...semanticsconference
 
Session 5.6 towards a semantic outlier detection framework in wireless sens...
Session 5.6 towards a semantic outlier detection framework in wireless sens...Session 5.6 towards a semantic outlier detection framework in wireless sens...
Session 5.6 towards a semantic outlier detection framework in wireless sens...semanticsconference
 

More from semanticsconference (20)

Linear books to open world adventure
Linear books to open world adventureLinear books to open world adventure
Linear books to open world adventure
 
Session 1.2 high-precision, context-free entity linking exploiting unambigu...
Session 1.2 high-precision, context-free entity linking exploiting unambigu...Session 1.2 high-precision, context-free entity linking exploiting unambigu...
Session 1.2 high-precision, context-free entity linking exploiting unambigu...
 
Session 4.3 semantic annotation for enhancing collaborative ideation
Session 4.3 semantic annotation for enhancing collaborative ideationSession 4.3 semantic annotation for enhancing collaborative ideation
Session 4.3 semantic annotation for enhancing collaborative ideation
 
Session 1.1 dalicc - data licenses clearance center
Session 1.1 dalicc - data licenses clearance centerSession 1.1 dalicc - data licenses clearance center
Session 1.1 dalicc - data licenses clearance center
 
Session 1.3 context information management across smart city knowledge domains
Session 1.3 context information management across smart city knowledge domainsSession 1.3 context information management across smart city knowledge domains
Session 1.3 context information management across smart city knowledge domains
 
Session 0.0 aussenac semanticsnl-pwebsem2017-v4
Session 0.0 aussenac semanticsnl-pwebsem2017-v4Session 0.0 aussenac semanticsnl-pwebsem2017-v4
Session 0.0 aussenac semanticsnl-pwebsem2017-v4
 
Session 0.0 keynote sandeep sacheti - final hi res
Session 0.0 keynote sandeep sacheti - final hi resSession 0.0 keynote sandeep sacheti - final hi res
Session 0.0 keynote sandeep sacheti - final hi res
 
Session 1.1 linked data applied: a field report from the netherlands
Session 1.1 linked data applied: a field report from the netherlandsSession 1.1 linked data applied: a field report from the netherlands
Session 1.1 linked data applied: a field report from the netherlands
 
Session 1.2 enrich your knowledge graphs: linked data integration with pool...
Session 1.2 enrich your knowledge graphs: linked data integration with pool...Session 1.2 enrich your knowledge graphs: linked data integration with pool...
Session 1.2 enrich your knowledge graphs: linked data integration with pool...
 
Session 1.4 connecting information from legislation and datasets using a ca...
Session 1.4 connecting information from legislation and datasets using a ca...Session 1.4 connecting information from legislation and datasets using a ca...
Session 1.4 connecting information from legislation and datasets using a ca...
 
Session 1.4 a distributed network of heritage information
Session 1.4 a distributed network of heritage informationSession 1.4 a distributed network of heritage information
Session 1.4 a distributed network of heritage information
 
Session 0.0 media panel - matthias priem - gtuo - semantics 2017
Session 0.0 media panel - matthias priem - gtuo - semantics 2017Session 0.0 media panel - matthias priem - gtuo - semantics 2017
Session 0.0 media panel - matthias priem - gtuo - semantics 2017
 
Session 1.3 semantic asset management in the dutch rail engineering and con...
Session 1.3 semantic asset management in the dutch rail engineering and con...Session 1.3 semantic asset management in the dutch rail engineering and con...
Session 1.3 semantic asset management in the dutch rail engineering and con...
 
Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...
Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...
Session 1.3 energy, smart homes &amp; smart grids: towards interoperability...
 
Session 1.2 improving access to digital content by semantic enrichment
Session 1.2 improving access to digital content by semantic enrichmentSession 1.2 improving access to digital content by semantic enrichment
Session 1.2 improving access to digital content by semantic enrichment
 
Session 2.3 semantics for safeguarding &amp; security – a police story
Session 2.3 semantics for safeguarding &amp; security – a police storySession 2.3 semantics for safeguarding &amp; security – a police story
Session 2.3 semantics for safeguarding &amp; security – a police story
 
Session 2.5 semantic similarity based clustering of license excerpts for im...
Session 2.5 semantic similarity based clustering of license excerpts for im...Session 2.5 semantic similarity based clustering of license excerpts for im...
Session 2.5 semantic similarity based clustering of license excerpts for im...
 
Session 4.2 unleash the triple: leveraging a corporate discovery interface....
Session 4.2 unleash the triple: leveraging a corporate discovery interface....Session 4.2 unleash the triple: leveraging a corporate discovery interface....
Session 4.2 unleash the triple: leveraging a corporate discovery interface....
 
Session 1.6 slovak public metadata governance and management based on linke...
Session 1.6 slovak public metadata governance and management based on linke...Session 1.6 slovak public metadata governance and management based on linke...
Session 1.6 slovak public metadata governance and management based on linke...
 
Session 5.6 towards a semantic outlier detection framework in wireless sens...
Session 5.6 towards a semantic outlier detection framework in wireless sens...Session 5.6 towards a semantic outlier detection framework in wireless sens...
Session 5.6 towards a semantic outlier detection framework in wireless sens...
 

Recently uploaded

IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024The Digital Insurer
 

Recently uploaded (20)

IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 

Nicoletta Fornara and Fabio Marfia | Modeling and Enforcing Access Control Obligations for SPARQL-DL Queries

  • 1. Nicoletta Fornara, Fabio Marfia Università della Svizzera italiana (USI) – http://www.usi.ch 13th September 2016 Modeling and Enforcing Access Control Obligations for SPARQL-DL queries
  • 2. 13/09/2016 Page 2/27 Università della Svizzera italiana (USI) SPARQL-DL… hey, what? SPARQL-DL is a SPARQL-like query language for conjunctive ABox-RBox-TBox queries for OWL 2 DL ontologies It is thought to be as much similar as possible to SPARQL, while allowing complex queries on the knowledge that can be inferred from an OWL 2 ontology using standard DL reasoning algorithms A formal description can be found in E. Sirin and B. Parsia. SPARQL-DL: SPARQL Query for OWL-DL. Proceedings of the Third International Workshop on OWL: Experiences and Directions (OWLED '07). A Java prototype of a SPARQL-DL query interface for OWL 2 has been developed by the DERIVO company (2009)
  • 3. 13/09/2016 Page 3/27 Università della Svizzera italiana (USI) Examples of SPARQL-DL queries Get all Classes: SELECT ?c WHERE { Class(?c) } Ask class A is a subclass of B: ASK { SubClassOf(ex:A, ex:B) } Get all transitive properties that have John as subject: SELECT ?p WHERE { PropertyValue(ex:john, ?p, ?o), Transitive(?p)}
  • 4. 13/09/2016 Page 4/27 Università della Svizzera italiana (USI) AND, OR operands Conjunctive conditions are expressed with the use of a comma separator, as in the last example Disjunctive conditions can be expressed with the OR WHERE clause Get all transitive or symmetric properties that have John as subject: SELECT ?p WHERE { PropertyValue(ex:john, ?p, ?o), Transitive(?p)} OR WHERE { PropertyValue(ex:john, ?p, ?o), Symmetric(?p)}
  • 5. 13/09/2016 Page 5/27 Università della Svizzera italiana (USI) SPARQL-DL syntax The SPARQL-DL query language allows the expression of composite conjunctions and disjunctions between 18 different atoms: Type(a,C) ProperyValue(a,p,v) SameAs(a,b) DifferentFrom(a,b) EquivalentClass(C1,C2) SubClassOf(C1,C2) DisjointWith(C1,C2) ComplementOf(C1,C2) EquivalentProperty(p1,p2) SubPropertyOf(p1,p2) InverseOf(p1,p2) ObjectProperty(p) DatatypeProperty(p) Functional(p) InverseFunctional(p) Transitive(p) Symmetric(p) Annotation(s,p,o)
  • 6. 13/09/2016 Page 6/27 Università della Svizzera italiana (USI) Managing Access Control for DL Inferred Knowledge Different works specify techniques for managing high level and fine-grained access control for RDF graphs Such works do not rely on reasoning algorithms for protecting data. But using the specification of complex DL expressions for identifying the different pieces of data to be protected appears to represent an interesting approach, as already showed by Sacco et al. (2011), Masoumzadeh et al. (2011) This is the first time that such interesting approach is applied to a SPARQL-DL query interface
  • 7. 13/09/2016 Page 7/27 Università della Svizzera italiana (USI) Why applying Access Control paradigms to a SPARQL-DL query interface? ? 1. It allows mixed ABox-RBox-TBox queries that can not be handled by other query languages 2. It has a clear syntax and semantics 3. The SPARQL-DL Java API released by the DERIVO company is available under LGPL license 4. The same reasoner instance that is used to obtain the results of a SPARQL-DL query can be used for inferring fine-grained access permissions
  • 8. 13/09/2016 Page 8/27 Università della Svizzera italiana (USI) Our chosen Access Control approach: Formal Specification of Obligations We define the general form of an obligation O as a triple O = <D, A, C> Where D is a description of the requesting user, A is the activation condition of the obligation and C the content of the obligation The activation condition of the obligation is the formal specification of a set of condition according to which the obligation activates, in the form of a set of logical axioms The content of the policy is the set of actions that have to be performed as a consequence of the activation of the obligation
  • 9. 13/09/2016 Page 9/27 Università della Svizzera italiana (USI) Obligation Definition Example (Hospital Use Case) When a user submits a query for statistical purposes, the ID of patients with a diabetic disease have to be anonymized In our O = <D, A, C> paradigm, D is a description of the requesting user, as, e.g., a statisticalPurposes attribute (we did not focus on such part) A can be a DL Class axiom identifying each patient with a diabetic disease: Class: AC01 SubClassOf: AC EquivalentTo: Patient and hasRecord some (hasInfoAbout value diabetes)
  • 10. 13/09/2016 Page 10/27 Università della Svizzera italiana (USI) Obligation Definition Example (Hospital Use Case) C is a pre-defined function to be called passing as an argument p each piece of data identified by the class AC01: C = anonymize(p, someAnonimizationAlgorithm) We identified three main types of content functions in our experiments. Such list can be extended: Remove(p) Anonymize(p, someAnonimizationAlgorithm) WriteLogEvent(requestingUser, p, timestamp)
  • 11. 13/09/2016 Page 11/27 Università della Svizzera italiana (USI) Obligation Enforcement Module: An Access Control Middle-Layer
  • 12. 13/09/2016 Page 12/27 Università della Svizzera italiana (USI) Obligation Enforcement in 4 steps 1. When the Access Control Layer receives a SPARQL-DL query, it is rewritten before submitting it to the final endpoint, in order to retrieve the access control conditions also for each piece of returned data 2. The modified query is submitted to the SPARQL-DL endpoint and executed on both collections of original data and activation conditions 3. The result is returned to the Access Control Layer. Each piece of data on which an obligation is active, is changed according to each obligation content function. 4. The final result is returned to the Data Consumer
  • 13. 13/09/2016 Page 13/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable and individual in the query, information must be added in order to retrieve the conditions that are active for each piece of data Example query: identifying all people living in Oxford or Birmingham SELECT ?x WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)}
  • 14. 13/09/2016 Page 14/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable in in each WHERE clause, another WHERE clause is added for identifying its activated conditions. Example: SELECT ?x WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)}
  • 15. 13/09/2016 Page 15/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable in in each WHERE clause, another WHERE clause is added for identifying its activated conditions. Example: SELECT ?x, ?xAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person), SubClassOf(?xAC, AC), Type(?x, ?xAC)}
  • 16. 13/09/2016 Page 16/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each variable in in each WHERE clause, another WHERE clause is added for identifying its activated conditions. Example: SELECT ?x, ?xAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person), SubClassOf(?xAC, AC), Type(?x, ?xAC)}
  • 17. 13/09/2016 Page 17/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each named individual, a WHERE clause is added for identifying its own activated conditions: SELECT ?x, ?xAC, ?oxfAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {SubClassOf(?oxfAC, AC), Type(oxford, ?oxfAC)}
  • 18. 13/09/2016 Page 18/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each named individual, a WHERE clause is added for identifying its own activated conditions: SELECT ?x, ?xAC, ?oxfAC, ?birAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {SubClassOf(?birAC, AC), Type(birmingham, ?birAC)}
  • 19. 13/09/2016 Page 19/27 Università della Svizzera italiana (USI) 1. SPARQL-DL Query Rewriting For each named individual, a WHERE clause is added for identifying its own activated conditions: SELECT ?x, ?xAC, ?oxfAC, ?birAC, ?perAC WHERE {PropertyValue(?x, livesIn, oxford), Type(?x, Person)} OR WHERE {PropertyValue(?x, livesIn, birmingham), Type(?x, Person)} […] OR WHERE {SubClassOf(?perAC, AC), SubClassOf(Person, ?perAC)}
  • 20. 13/09/2016 Page 20/27 Università della Svizzera italiana (USI) 2. Enhanced response The query rewriting process obtains a query having as results all the results of the original query, plus the information about the activated conditions on each piece of data Sample response for the presented original query ?x bob carl alice eleanor donald
  • 21. 13/09/2016 Page 21/27 Università della Svizzera italiana (USI) 2. Enhanced response Sample enhanced response ?x ?xAC ?oxfAC ?birAC ?perAC bob carl alice eleanor donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03
  • 22. 13/09/2016 Page 22/27 Università della Svizzera italiana (USI) 3. Obligation Enforcement The table is splitted into two sets ?x ?xAC ?oxfAC ?birAC ?perAC bob carl alice eleanor donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03 Standard Response Enforcement directives
  • 23. 13/09/2016 Page 23/27 Università della Svizzera italiana (USI) 3. Obligation Enforcement Data is changed in the standard response according to obligations functions (e.g. bob is removed…) ?x ?xAC ?oxfAC ?birAC ?perAC bob carl alice anonym01 donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03 Standard Response Enforcement directives WriteLogAnonymize Remove
  • 24. 13/09/2016 Page 24/27 Università della Svizzera italiana (USI) 3. Obligation Enforcement Data is changed in the standard response according to obligations functions (e.g. bob is removed…) ?x ?xAC ?oxfAC ?birAC ?perAC alice anonym01 donald bob AC01 bob AC02 carl AC02 eleanor AC01 AC03 Standard Response Enforcement directives
  • 25. 13/09/2016 Page 25/27 Università della Svizzera italiana (USI) 4. Final Response Enforcement directives are removed ?x ?xAC ?oxfAC ?birAC ?perAC alice anonym01 donald Original variables Access Control Variables
  • 26. 13/09/2016 Page 26/27 Università della Svizzera italiana (USI) 4. Final Response Access Control variables are removed ?x alice anonym01 donald That is our Final response
  • 27. 13/09/2016 Page 27/27 Università della Svizzera italiana (USI) Performances
  • 28. 13/09/2016 Page 28/27 Università della Svizzera italiana (USI) Conclusion and Future Work We presented an approach for defining and enforcing expressive data provider obligations for performing fine- grained protection on OWL 2 DL data A private-by-default environment can be chosen, permissions can be expressed at the same manner as the proposed obligations, and introducing a little change in the enforcement algorithm The concept of Institutional power for generating policies can be added, by studying its relationship with the proposed model DL policies can be transmitted as Sticky Policies
  • 29. Nicoletta Fornara, Fabio Marfia Università della Svizzera italiana (USI) – http://www.usi.ch 13th September 2016 Modeling and Enforcing Access Control Obligations for SPARQL-DL queries
  • 30. 13/09/2016 Page 30/27 Università della Svizzera italiana (USI) Citations E. Sirin and B. Parsia. SPARQL-DL: SPARQL Query for OWL-DL. Proceedings of the Third International Workshop on OWL: Experiences and Directions (OWLED '07) O. Sacco, A. Passant, and S. Decker: An access control framework for the web of data. In 2011IEEE 10th International Conference on Trust, Security and Privacy in Computing and Communications (2011) A. Masoumzadeh and J. Joshi: Ontology-based access control for social network systems. IJIPSI (2015) T. T. Nguyen, N. Fornara, and F.Marfia: Automatic policy enforcement on semantic social data. Multiagent and Grid Systems Journal (2015)