SemanticLIFE Collaboration: Security Requirements and Solutions - Security Aspects of Semantic Knowledge Management

SemanticLIFE is a project that stores all information an individual works with in a semantically enriched form. Ontologies are used to improve the search process and to express queries in the way humans think – e.g. “Find the draft I’ve been working on when traveling home from the conference in Chicago”. When people cooperate on projects they obviously need to share information without spending time on entering keywords and thinking about who should be able to access which data; the issue is to correctly configure access controls so that only required information is shared with the appropriate people. Using a combination of the Chinese Wall and the Bell LaPadula model we show how access controls can be configured correctly with little effort by the users.

[1]  David R. Karger,et al.  Haystack: per-user information environments , 1999, CIKM '99.

[2]  D. A. Quan,et al.  How to make a semantic web browser , 2004, WWW '04.

[3]  David Gelernter,et al.  Lifestreams: a storage model for personal data , 1996, SGMD.

[4]  Matt Bishop,et al.  Computer Security: Art and Science , 2002 .

[5]  Abigail Sellen,et al.  Gathering and sharing Web-based information: Implications for “ePerson” concepts , 2003 .

[6]  Michael J. Nash,et al.  The Chinese Wall security policy , 1989, Proceedings. 1989 IEEE Symposium on Security and Privacy.

[7]  Tore Risch,et al.  EDUTELLA: a P2P networking infrastructure based on RDF , 2002, WWW.

[8]  Amit P. Sheth,et al.  Semantic (Web) Technology In Action: Ontology Driven Information Systems for Search, Integration and Analysis , 2003, IEEE Data Eng. Bull..

[9]  A Min Tjoa,et al.  'SemanticLIFE' - A Framework for Managing Information of A Human Lifetime , 2004, iiWAS.

[10]  Edgar R. Weippl,et al.  Content-based Management of Document Access Control , 2001, INAP.

[11]  David R. Karger,et al.  Haystack: A Platform for Creating, Organizing and Visualizing Information Using RDF , 2002, Semantic Web Workshop.

[12]  Ian Dickinson,et al.  The ePerson snippet manager: a semantic web application.Vol. 328. , 2002 .

[13]  Gordon Bell,et al.  MyLifeBits: fulfilling the Memex vision , 2002, MULTIMEDIA '02.

[14]  Amit P. Sheth,et al.  Semantic Visualization: Interfaces for Exploring and Exploiting Ontology, Knowledgebase, Heterogeneous Content and Complex Relationships , 2004 .

[15]  Dean Povey Enforcing Well-Formed and Partially-Formed Transactions for UNIX , 1999, USENIX Security Symposium.

[16]  David R. Karger,et al.  Haystack: a platform for creating, organizing and visualizing semistructured information , 2003, IUI '03.