A Semantic Approach to Access Control and Automated Credential Negotiation for Decentralized Online Repositories / An OKKAM Project Use Case

OKKAM project aims at enabling a web of entities by providing an infrastructure of decentralized online repositories, each owned by either a public or a private organization. A repository is designed to handle a large number of entries (as the Web identities are) where creators of entries are end-users. In this paper we present a semantic approach to access control that naturally scales to the large number of entries in a repository and defines a flexible association of access policies and repository entries based on semantic attributes. An automated enforcement of access control policies is presented allowing users to automatically establish necessary access rights with online repositories, and interoperate their credentials based on semantics of credential interoperability.

[1]  Bruce Schneier,et al.  Practical cryptography , 2003 .

[2]  Fabio Massacci,et al.  Interactive access control for autonomic systems: From theory to implementation , 2008, TAAS.

[3]  L. Stein,et al.  OWL Web Ontology Language - Reference , 2004 .

[4]  Antonio Maña,et al.  Semantic Interoperability of Authorizations , 2004, WOSIS.

[5]  Fabio Massacci,et al.  A Negotiation Scheme for Access Rights Establishment in Autonomic Communication , 2006, Journal of Network and Systems Management.

[6]  José M. Troya,et al.  Applying the semantic Web layers to access control , 2003, 14th International Workshop on Database and Expert Systems Applications, 2003. Proceedings..