Abstract : Access control is a recognized open issue when interacting with RDF using HTTP methods. In literature, authentication and authorization mechanisms either introduce undesired complexity such as SPARQL and ad-hoc policy languages, or rely on basic access control lists, thus resulting in limited policy expressiveness. In this paper we show how the Shi3ld attribute-based authorization framework for SPARQL endpoints has been progressively converted to protect HTTP operations on RDF. We proceed by steps: we start by supporting the SPARQL 1.1 Graph Store Protocol, and we shift towards a SPARQL-less solution for the Linked Data Platform. We demonstrate that the resulting authoriza- tion framework provides the same functionalities of its SPARQL-based counterpart, including the adoption of Semantic Web languages only.
https://hal.inria.fr/hal-00815067
Contributor : Luca Costabello
<>
Submitted on : Thursday, April 18, 2013 - 6:32:32 PM
Last modification on : Monday, November 5, 2018 - 3:52:09 PM
Long-term archiving on : Friday, July 19, 2013 - 4:01:02 AM
Luca Costabello, Serena Villata, Oscar Rodriguez Rocha, Fabien Gandon. Access Control for HTTP Operations on Linked Data. ESWC - 10th Extended Semantic Web Conference - 2013, May 2013, Montpellier, France. ⟨hal-00815067⟩
