Abstract : Access control is a recognized open issue when interacting with RDF using HTTP methods. In literature, authentication and authorization mechanisms either introduce undesired complexity such as SPARQL and ad-hoc policy languages, or rely on basic access control lists, thus resulting in limited policy expressiveness. In this paper we show how the Shi3ld attribute-based authorization framework for SPARQL endpoints has been progressively converted to protect HTTP operations on RDF. We proceed by steps: we start by supporting the SPARQL 1.1 Graph Store Protocol, and we shift towards a SPARQL-less solution for the Linked Data Platform. We demonstrate that the resulting authoriza- tion framework provides the same functionalities of its SPARQL-based counterpart, including the adoption of Semantic Web languages only.
https://hal.inria.fr/hal-00815067
Contributeur : Luca Costabello <>
Soumis le : jeudi 18 avril 2013 - 18:32:32
Dernière modification le : mercredi 7 octobre 2015 - 01:14:52
Document(s) archivé(s) le : vendredi 19 juillet 2013 - 04:01:02
Luca Costabello, Serena Villata, Oscar Rodriguez Rocha, Fabien Gandon. Access Control for HTTP Operations on Linked Data. ESWC - 10th Extended Semantic Web Conference - 2013, May 2013, Montpellier, France. 2013. <hal-00815067>
