Implementing a Secure Annotation Service

  • Imran Khan
  • Ronald Schroeter
  • Jane Hunter
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4145)


Annotation systems enable “value-adding” to digital resources by the attachment of additional data in the form of comments, explanations, references, reviews and other types of external, subjective remarks. They facilitate group discourse and capture collective intelligence by enabling communities to attach and share their views on particular data and documents accessible over the Web. Annotation systems vary greatly with regard to the types of content they can annotate, the extent of collaboration and sharing they allow and the communities which they serve. However many applications share the need to authenticate the source of annotations and restrict access to them – in order to protect intellectual property rights or personal privacy. This paper describes a secure, open source annotation system that we have developed that uses Shibboleth [1] and XACML [2] to identify and authenticate users and restrict access to annotations stored on an Annotea [3] server.


Access Control Resource Description Framework Annotation System Access Control Policy Access Policy 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. 1.
    Internet2, Shibboleth Project (2005),
  2. 2.
    Proctor, S.: Sun Microsystems, XACML API (2004),
  3. 3.
    Koivunen, M., et al.: Annotea: an open RDF infrastructure for shared Web annotations. In: Proceedings of the 10th Intl conference on World Wide Web, Hong Kong. ACM Press, New York (2001)Google Scholar
  4. 4.
    Heck, R., et al.: Department of Mathematics and Computer Science, Grinnell College, A Survey of Web Annotation Systems (1999),
  5. 5.
    Lewkowicz, M., et al.: A Web-based Annotation System for Improving Cooperation in a Care Network. In: ICWE Workshops, pp. 227–239 (2004)Google Scholar
  6. 6.
    Gertz, M., et al.: Annotating Scientific Images: A Concept-Based Approach. In: 14th Intl Conference on Scientific and Statistical Database Management (2002)Google Scholar
  7. 7.
    Swick, R., et al.: W3C, Annotea Protocols (2002),
  8. 8.
    Lorch, M., et al.: First experiences using XACML for access control in distributed systems. In: Proc of the 2003 ACM workshop on XML security, Fairfax, Virginia. ACM Press, New York (2003)Google Scholar
  9. 9.
    Zope, Zope Annotation Server (2005),
  10. 10.
    Brickley, D., Guha, R.V.: W3C, Resource Description Framework (RDF) Schema Specification 1.0 (2005),
  11. 11.
    Wilson, M.:, Annozilla (Annotea on Mozilla) (2000),
  12. 12.
    Vatton, I.: W3C, Amaya (1994),
  13. 13.
    W3C, Perllib Annotations Server HOWTO,
  14. 14.
    Schroeter, R., et al.: Vannotea -A Collaborative Video Indexing, Annotation and Discussion System For Broadband Networks. In: Knowledge Markup and Semantic Annotation Workshop, K-CAP 2003, Sanibel, Florida (2003)Google Scholar
  15. 15.
    Hunter, J., et al.: Using the Semantic Grid to Build Bridges between Museums and Indigenous Communities. In: Semantic Grid Applications Workshop, Honolulu (2004)Google Scholar
  16. 16.
    Harris, N., et al.: Access Management Report. London School of Economics (2002)Google Scholar
  17. 17.
    Morgan, R.L., Cantor, S., Hoehn, W., Klingenstein, K.: Federated Security: The Shibboleth Approach. Educase Quarterly 27, 12–17 (2004)Google Scholar
  18. 18.
    Cover, R.: Oasis, Cover Pages: Security Assertion Markup Language (SAML) (2005),
  19. 19.
    Directory Working Group (MACE-Dir), Internet2 Middleware Architecture Committee for Education, EduPerson Object Class Specification (Draft) (2006),
  20. 20.
    Scavo, T., Cantor, S.: Internet2, Shibboleth Architecture (2005),
  21. 21.
    McBride, B.: Jena: A Semantic Web Toolkit. IEEE Internet Computing 6, 55–59 (2002)CrossRefGoogle Scholar
  22. 22.
    Thomas, A.P., et al.: The multivalent browser: a platform for new ideas. In: Proceedings of the 2001 ACM Symposium on Document engineering, Atlanta, Georgia, USA. ACM Press, New York (2001)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Imran Khan
    • 1
  • Ronald Schroeter
    • 1
  • Jane Hunter
    • 1
  1. 1.The School of ITEEThe University of QueenslandSt LuciaAustralia

Personalised recommendations