Access control is a recognized open issue when interacting with RDF using HTTP methods. In literature, authentication and authorization mechanisms either introduce undesired complexity such as SPARQL and ad-hoc policy languages, or rely on basic access control lists, thus resulting in limited policy expressiveness. This paper attempts to show how the Shi3ld attribute-based authorization framework for SPARQL endpoints has been progressively converted to protect HTTP operations on RDF.

Keywords: Linked Data Platform, Access control, CRUD, SPARQL endpoint, Privacy Preference Ontology (PPO)
Author: Costabello, Luca
Date created: 2013-01-01 05:00:00.000
Time required: P30M
Educational use: professionalDevelopment
Educational audience: student
Interactivity type: expositive

  • Competencies