Copyright 2011 Digital Enterprise Research Institute. All rights reserved. Digital Enterprise Research Institute www.deri.i e Enabling Networked Knowledge PPO & PPM 2.0: Extending the Privacy Preference Framework Owen Sacco and John G. Breslin [email protected] and [email protected]I-SEMANTICS 2012 – Graz, Austria Thursday 6 th September 2012
28
Embed
PPO & PPM 2.0: Extending the Privacy Preference Framework
Web of Data applications provide users with the means to easily publish their personal information on the Web. However, this information is publicly accessible and users cannot control how to disclose their personal information. Protecting personal information is deemed important in use cases such as controlling access to sensitive personal information on the Social Semantic Web or even in Linked Open Government Data. The Privacy Preference Ontology (PPO) can be used to define fine-grained privacy preferences to control access to personal information and the Privacy Preference Manager (PPM) can be used to enforce such preferences to determine which specific parts of information can be granted access. However, PPO and PPM require further extensions to create more control when granting access to sensitive data; such as more flexible granularity for defining privacy preferences. In this paper, we (1) extend PPO with new classes and properties to define further fine-grained privacy preferences; (2) provide a new light-weight vocabulary, called the Privacy Preference Manager Ontology (PPMO), to define characteristics about privacy preference managers; and (3) present an extension to PPM to enable further control when publishing and sharing personal information based on the extended PPO and the new vocabulary PPMO. Moreover, the PPM is extended to provide filtering data over SPARQL endpoints.
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Copyright 2011 Digital Enterprise Research Institute. All rights reserved.
I-SEMANTICS 2012 – Graz, Austria Thursday 6th September 2012
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Introduction
Increase in shared personal information on the Social Web raised awareness about privacy
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Current Limitations
Social Web applications provide system default privacy settings
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Use Case
A FOAF based Social Network
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Users feel more confident to publish their information
Users would be in full control– Which specific information can be shared and to whom
Granting access based on interest and not only to friends in contact lists
– Eg: Provide my phone number only to DERI colleagues without being in a friend or group list called DERI
Protecting a FOAF based Social Network
Use Case
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
PPO Overview
A light weight vocabulary for defining fine-grained privacy preferences for RDF data
A privacy preference contains: Which resource, statement or graph must be restricted A condition that must be satisfied The access control privilege (defined using WAC) A SPARQL query that tests whether a user requesting
The Privacy Preference Manager provides two main tasks: A user creates his/her privacy preferences A requester logs in to the other user’s manager which
returns filtered RDF data – in this case a faceted profile
Privacy Preference Manager
JohnRequester
Privacy PreferenceManager Private FOAF Profile
Privacy Preferences
Alex
WebID
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Privacy Preference Manager Ontology
ppmo:Administration
foaf:Agent
acl:Access
acl:Access
acl:Access
acl:Access
ppmo:hasOwner
ppmo:hasAdministration
ppmo:hasDefaultNoAccess
ppmo:hasDefaultConflictAccess
ppmo:hasDefaultConflictNoAccess
acl:Access
acl:Access
ppmo:AdminSpace
foaf:Agent
rdfs:Literal
ppmo:PrivacyPreferenceManager
ppmo:hasAdministrator ppmo:hasAdminSpaceQuery
ppmo:hasAdminAccess
ppmo:hasAdminNoAccessppmo:hasAdminSpace
ppmo:hasDefaultAccess
wo:Scale
ppmo:hasPriorityScale
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Privacy Preference Manager Ontology
ppmo:Administration
foaf:Agent
acl:Access
acl:Access
acl:Access
acl:Access
ppmo:hasOwner
ppmo:hasAdministration
ppmo:hasDefaultNoAccess
ppmo:hasDefaultConflictAccess
ppmo:hasDefaultConflictNoAccess
acl:Access
acl:Access
ppmo:AdminSpace
foaf:Agent
rdfs:Literal
ppmo:PrivacyPreferenceManager
ppmo:hasAdministrator ppmo:hasAdminSpaceQuery
ppmo:hasAdminAccess
ppmo:hasAdminNoAccessppmo:hasAdminSpace
ppmo:hasDefaultAccess
wo:Scale
ppmo:hasPriorityScale
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Privacy Preference Manager Ontology
ppmo:Administration
foaf:Agent
acl:Access
acl:Access
acl:Access
acl:Access
ppmo:hasOwner
ppmo:hasAdministration
ppmo:hasDefaultNoAccess
ppmo:hasDefaultConflictAccess
ppmo:hasDefaultConflictNoAccess
acl:Access
acl:Access
ppmo:AdminSpace
foaf:Agent
rdfs:Literal
ppmo:PrivacyPreferenceManager
ppmo:hasAdministrator ppmo:hasAdminSpaceQuery
ppmo:hasAdminAccess
ppmo:hasAdminNoAccessppmo:hasAdminSpace
ppmo:hasDefaultAccess
wo:Scale
ppmo:hasPriorityScale
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Privacy Preference Manager Ontology
ppmo:Administration
foaf:Agent
acl:Access
acl:Access
acl:Access
acl:Access
ppmo:hasOwner
ppmo:hasAdministration
ppmo:hasDefaultNoAccess
ppmo:hasDefaultConflictAccess
ppmo:hasDefaultConflictNoAccess
acl:Access
acl:Access
ppmo:AdminSpace
foaf:Agent
rdfs:Literal
ppmo:PrivacyPreferenceManager
ppmo:hasAdministrator ppmo:hasAdminSpaceQuery
ppmo:hasAdminAccess
ppmo:hasAdminNoAccessppmo:hasAdminSpace
ppmo:hasDefaultAccess
wo:Scale
ppmo:hasPriorityScale
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Privacy Preference Manager Ontology
ppmo:Administration
foaf:Agent
acl:Access
acl:Access
acl:Access
acl:Access
ppmo:hasOwner
ppmo:hasAdministration
ppmo:hasDefaultNoAccess
ppmo:hasDefaultConflictAccess
ppmo:hasDefaultConflictNoAccess
acl:Access
acl:Access
ppmo:AdminSpace
foaf:Agent
rdfs:Literal
ppmo:PrivacyPreferenceManager
ppmo:hasAdministrator ppmo:hasAdminSpaceQuery
ppmo:hasAdminAccess
ppmo:hasAdminNoAccessppmo:hasAdminSpace
ppmo:hasDefaultAccess
wo:Scale
ppmo:hasPriorityScale
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Privacy Preference Manager Ontology
ppmo:Administration
foaf:Agent
acl:Access
acl:Access
acl:Access
acl:Access
ppmo:hasOwner
ppmo:hasAdministration
ppmo:hasDefaultNoAccess
ppmo:hasDefaultConflictAccess
ppmo:hasDefaultConflictNoAccess
acl:Access
acl:Access
ppmo:AdminSpace
foaf:Agent
rdfs:Literal
ppmo:PrivacyPreferenceManager
ppmo:hasAdministrator ppmo:hasAdminSpaceQuery
ppmo:hasAdminAccess
ppmo:hasAdminNoAccessppmo:hasAdminSpace
ppmo:hasDefaultAccess
wo:Scale
ppmo:hasPriorityScale
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Extending the Privacy Preference Manager
WebIDAuthenticator
RDF Data Retriever & Parser
Privacy Preferences
Enforcer
Privacy Preferences
Creator
User Interface
Privacy Preferences
WebID Authentication Service
foafssl.org
User
SSL Certificate Confirmation
ConfirmationSSL Certificate
PrivacyPreference
Privacy Preference
PrivacyPreference
Query
RDF Data
Filtered RDF Data
Request
Request RDF Data
Query
Request
Information
Privacy Preference Manager
RDF Documents
SPARQL Endpoint
Digital Enterprise Research Institute www.deri.ie
Enabling Networked Knowledge
Future Work
Defining and computing trustworthiness of requesters