priv cy & sem ntics · socio-semantic access control s4ac + shi3ld e.g. only my colleagues...
TRANSCRIPT
![Page 1: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/1.jpg)
priv cy & sem ntics− why should we care?...
− because if we don’t care the semantic Web will never reach its full potential!
fabien, gandon, http://fabien.info @fabien_gandon
![Page 2: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/2.jpg)
ISWC… 2003… OWLMeta-model
in CLIPS
Ontologyin OWL
Annotationin OWL
Rulein (R)OWL
Servicesin (W)OWL
Privacyin (S)OWL
Queryin (Q)OWL
Ontologystylesheet
&
Annotationstylesheet&
Rulestylesheet&
Servicestylesheet&
Privacystylesheet
&
Querystylesheet&
Ontologyin CLIPS
Annotationin CLIPS
Rulein CLIPS
Service rulein CLIPS
Privacy rulein CLIPS
Query rulesin CLIPS
XSLT Engine
Resultin OWL
JESS
[Gandon & Sadeh]
e-
Asserting elementary needs for authorized information
Pre-check access rights
Post-checkaccess rights
Fetch usefulstatic knowledge
Application ofobfuscation rules
Query contextassertionQuery
Assertion ofauthorized knowledge
Result
Call relevant external services
privacyquery
answer
serviceCore
Know-ledge
![Page 3: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/3.jpg)
socio-semantic access controlS4AC + SHI3LD
e.g. only my colleaguesworking on the same subject
User
ASK{ ?res dcterms:creator ?prov .
?prov rel:hasColleague ?user .
?prov foaf:interestedBy ?topic .
?user foaf:interestedBy ?topic }
[ECAI 2012, ESWC 2013]
![Page 4: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/4.jpg)
DOUBLE EDGED SEMANTICS IN SECURITY
expressive policies
factorized rules
extensible vocs
robust conditions
![Page 5: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/5.jpg)
DOUBLE EDGED SEMANTICS IN SECURITY
expressive policies
factorized rules
extensible vocs
robust conditionssemantic divide
de-anonymizing
unwanted conclusions
additional complexity
completeness & trust
![Page 6: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/6.jpg)
security on every floor
![Page 7: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/7.jpg)
security on every floor
programming the semantic web
standard frameworks & models
basic security APIs
certified code, protocols…
infrastructures,third parties
![Page 8: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/8.jpg)
more than technical
![Page 9: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/9.jpg)
more than technical
awareness
sustained attention
context changes
ergonomics
preferences
social engineering
![Page 10: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/10.jpg)
my triple statement…(semantics are a double-edged weapon for security,
deployment requires security on every floor,
security is much more than a technical problem)
![Page 11: priv cy & sem ntics · socio-semantic access control S4AC + SHI3LD e.g. only my colleagues working on the same subject User ASK{ ?res dcterms:creator ?prov .?prov rel:hasColleague](https://reader034.vdocument.in/reader034/viewer/2022050404/5f819a5fc02ed327dc34d99a/html5/thumbnails/11.jpg)
my triple statement…(semantics are a double-edged weapon for security,
deployment requires security on every floor,
security is much more than a technical problem)
beyond prevention:monitoring, tracing,detecting, chasing,
licensing,…
fabien, gandon, http://fabien.info @fabien_gandon
but there will be leaks