Ontology-Based Policy Specification and Management

Nejdl, Wolfgang; Olmedilla, Daniel; Winslett, Marianne; Zhang, Charles C.

doi:10.1007/11431053_20

Cited by 40 publications

(26 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…This has a number of limitations: (i) it leads to ad-hoc reasoning about policy compliance, one which is tied to the specific vocabularies that express the rules according to which the reasoning takes place; (ii) it limits the reusability and portability of policies; (iii) it precludes the identification of inter-policy relations; (iv) it limits the ability to perform policy governance. In order to overcome such limitations, semanticallyrich approaches to the specification of policies have been brought to the attention of the research community [17,32,40]. These generally embrace Semantic Web representations for capturing what we term action-oriented policies, i.e.…”

Section: Related Workmentioning

confidence: 99%

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

et al. 2017

View full text Add to dashboard Cite

Enterprises increasingly recognize the compelling economic and operational benefits from virtualizing and pooling IT resources in the cloud. Nevertheless, the significant and valuable transformation of organizations that adopt cloud computing is accompanied by a number of security threats that should be considered. In this paper, we outline significant security challenges presented when migrating to a cloud environment and propose PaaSword -a novel holistic framework that aspires to alleviate these challenges. Specifically, the proposed framework involves a context-aware security model, the necessary policies enforcement mechanism along with a physical distribution, encryption and query middleware.

show abstract

Section: Related Workmentioning

confidence: 99%

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

et al. 2017

View full text Add to dashboard Cite

show abstract

“…Policy languages grounded in Semantic Web technologies allow policies to be described over heterogeneous domain data and promote common understanding among participants who might not use the same information model. There are two main advantages of using ontology in policy specification and management [22]:…”

Section: Access Control Policymentioning

confidence: 99%

Checking Compatibility and Replaceability in Web Services Business Protocols with Access Control

Elabd

Coquery

Hacid

2010

2010 IEEE International Conference on Web Services

View full text Add to dashboard Cite

Abstract. Recently, describing behavior of web services is becoming more and more important. This behavior can be described by business protocols representing the possible sequences of message exchanges. Since a lot of web services use access control policies to restrict the access to authorized consumers, these policies should be part of the service description. Studying the behavior of web services by analyzing their business protocol after assigning the access control policies is the main contribution of this work. Access control policies will be presented using ontology which eases policy specification and management and add some flexibility in the policy comparison. This paper introduces notions of compatibility and replaceability w.r.t. business protocols with access control policies annotations, together with the corresponding verification algorithms.

show abstract

“…Use of multiple policy languages without having a common vocabulary leads to ambiguity and unnecessary complexity, and also impacts upon the correctness and accuracy of system behaviour if policies are ill-or incompletely specified. Therefore, more recent research (Jung et al 2004, Toninelli et al 2005, Nejdl et al 2005, Grimm et al 2004) defines policies based on ontologies in order to overcome the aforementioned issues. In addition, compared to non-ontology based policy specification, ontology based policy specification could inherit any advantages from ontology definition that would not be available otherwise; for example, Nejdl et al (2005) borrowed the notions of inheritance and polymorphism from object-oriented modelling, and applied them to policy specification and management.…”

Section: Ontology-based Update Policymentioning

confidence: 99%

Selective data replication for distributed geographical data sets

Pascoe

2008

Proceedings of the 16th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems

View full text Add to dashboard Cite

The main purpose of this research is to incorporate additional higher-level semantics into the existing data replication strategies in such a way that their flexibility and performance can be improved in favour of both data providers and consumers. The resulting approach from this research is referred to as the selective data replication system. With this system, the data that has been updated by a data provider is captured and batched into messages known as update notifications. Once update notifications are received by data consumers, they are used to evaluate so-called update policies, which are specified by data consumers containing details on when data replications need to occur and what data needs to be updated during the replications.

show abstract

Ontology-Based Policy Specification and Management

Cited by 40 publications

References 14 publications

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

Checking Compatibility and Replaceability in Web Services Business Protocols with Access Control

Selective data replication for distributed geographical data sets

Contact Info

Product

Resources

About