Abstract
Most policy-based access control frameworks explicitly model whether execution of certain actions (read, write, etc.) on certain assets should be permitted or denied and usually assume that such actions are disjoint from each other, i.e. there does not exist any explicit or implicit dependency between actions of the domain. This in turn means, that conflicts among rules or policies can only occur if those contradictory rules or policies constrain the same action. In the present paper - motivated by the example of ODRL 2.1 as policy expression language - we follow a different approach and shed light on possible dependencies among actions of access control policies. We propose an interpretation of the formal semantics of general ODRL policy expressions and motivate rule-based reasoning over such policy expressions taking both explicit and implicit dependencies among actions into account. Our main contributions are (i) an exploration of different kinds of ambiguities that might emerge based on explicit or implicit dependencies among actions, and (ii) a formal interpretation of the semantics of general ODRL policies based on a defined abstract syntax for ODRL which shall eventually enable to perform rule-based reasoning over a set of such policies.
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
Simon Steyskal has been partially funded by the Vienna Science and Technology Fund (WWTF) through project ICT12-015 and by the Austrian Research Promotion Agency (FFG) grant 845638 (SHAPE).
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Cabrio, E., Palmero Aprosio, A., Villata, S.: These are your rights - a natural language processing approach to automated RDF licenses generation. In: Presutti, V., d’Amato, C., Gandon, F., d’Aquin, M., Staab, S., Tordai, A. (eds.) ESWC 2014. LNCS, vol. 8465, pp. 255–269. Springer, Heidelberg (2014)
De Coi, J.L., Olmedilla, D., Bonatti, P.A., Sauro, L.: Protune: a framework for semantic web policies. In: International Semantic Web Conference (Posters & Demos), vol. 401, p. 128 (2008)
Fowler, M., Scott, K.: UML distilled - a brief guide to the Standard Object Modeling Language, 2nd edn. Addison-Wesley-Longman (2000)
García, R., Gil, R., Gallego, I., Delgado, J.: Formalising ODRL semantics using web ontologies. In: Proc. 2nd Intl. ODRL Workshop, pp. 1–10 (2005)
Holzer, M., Katzenbeisser, S., Schallhart, C.: Towards formal semantics for ODRL. In: Proceedings of the First International Workshop on the Open Digital Rights Language (ODRL), Vienna, Austria, April 22–23, pp. 137–148 (2004)
Iannella, R., Guth, S.: Odrl version 2.0 common vocabulary. W3C ODRL Community Group (2012). http://www.w3.org/community/odrl/two/vocab/
Iannella, R., Guth, S., Pähler, D., Kasten, A.: Odrl: Open digital rights language 2.1. W3C ODRL Community Group (2012). http://www.w3.org/community/odrl/
Kasten, A., Grimm, R.: Making the semantics of ODRL and URM explicit using web ontologies. In: Virtual Goods, pp. 77–91 (2010)
Kencana Ramli, C.D.P., Nielson, H.R., Nielson, F.: XACML 3.0 in answer set programming. In: Albert, E. (ed.) LOPSTR 2012. LNCS, vol. 7844, pp. 89–105. Springer, Heidelberg (2013)
Pucella, R., Weissman, V.: A Formal Foundation for ODRL. CoRR, abs/cs/0601085 (2006)
Rotolo, A., Villata, S., Gandon, F.: A deontic logic semantics for licenses composition in the web of data. In: Int’l Conf. on Artificial Intelligence and Law ICAIL, pp. 111–120 (2013)
Steyskal, S., Polleres, A.: Defining expressive access policies for linked data using the ODRL ontology 2.0. In: Proceedings of the 10th International Conference on Semantic Systems, SEMANTICS 2014, Leipzig, Germany, September 4–5, pp. 20–23 (2014)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this paper
Cite this paper
Steyskal, S., Polleres, A. (2015). Towards Formal Semantics for ODRL Policies. In: Bassiliades, N., Gottlob, G., Sadri, F., Paschke, A., Roman, D. (eds) Rule Technologies: Foundations, Tools, and Applications. RuleML 2015. Lecture Notes in Computer Science(), vol 9202. Springer, Cham. https://doi.org/10.1007/978-3-319-21542-6_23
Download citation
DOI: https://doi.org/10.1007/978-3-319-21542-6_23
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-21541-9
Online ISBN: 978-3-319-21542-6
eBook Packages: Computer ScienceComputer Science (R0)