Upload
others
View
1
Download
0
Embed Size (px)
Citation preview
priv cy & sem ntics− why should we care?...
− because if we don’t care the semantic Web will never reach its full potential!
fabien, gandon, http://fabien.info @fabien_gandon
ISWC… 2003… OWLMeta-model
in CLIPS
Ontologyin OWL
Annotationin OWL
Rulein (R)OWL
Servicesin (W)OWL
Privacyin (S)OWL
Queryin (Q)OWL
Ontologystylesheet
&
Annotationstylesheet&
Rulestylesheet&
Servicestylesheet&
Privacystylesheet
&
Querystylesheet&
Ontologyin CLIPS
Annotationin CLIPS
Rulein CLIPS
Service rulein CLIPS
Privacy rulein CLIPS
Query rulesin CLIPS
XSLT Engine
Resultin OWL
JESS
[Gandon & Sadeh]
e-
Asserting elementary needs for authorized information
Pre-check access rights
Post-checkaccess rights
Fetch usefulstatic knowledge
Application ofobfuscation rules
Query contextassertionQuery
Assertion ofauthorized knowledge
Result
Call relevant external services
privacyquery
answer
serviceCore
Know-ledge
socio-semantic access controlS4AC + SHI3LD
e.g. only my colleaguesworking on the same subject
User
ASK{ ?res dcterms:creator ?prov .
?prov rel:hasColleague ?user .
?prov foaf:interestedBy ?topic .
?user foaf:interestedBy ?topic }
[ECAI 2012, ESWC 2013]
DOUBLE EDGED SEMANTICS IN SECURITY
expressive policies
factorized rules
extensible vocs
robust conditions
DOUBLE EDGED SEMANTICS IN SECURITY
expressive policies
factorized rules
extensible vocs
robust conditionssemantic divide
de-anonymizing
unwanted conclusions
additional complexity
completeness & trust
security on every floor
security on every floor
programming the semantic web
standard frameworks & models
basic security APIs
certified code, protocols…
infrastructures,third parties
more than technical
more than technical
awareness
sustained attention
context changes
ergonomics
preferences
social engineering
my triple statement…(semantics are a double-edged weapon for security,
deployment requires security on every floor,
security is much more than a technical problem)
my triple statement…(semantics are a double-edged weapon for security,
deployment requires security on every floor,
security is much more than a technical problem)
beyond prevention:monitoring, tracing,detecting, chasing,
licensing,…
fabien, gandon, http://fabien.info @fabien_gandon
but there will be leaks