UMBC ebiquity

Securing the Semantic Web: A Trust Management Approach

Status: Past project

Project Description:
A three year project funded by NSF (final approval pending) directed by PI Tm Finin and CO-PI Anupam Joshi to be carried out 2003-2006 with $240K in funding from the NSF Division of Information and Intelligent Systems, Data and Applications Security Program under the direction of program officer Bhavani Thuraisingham.

This research investigates distributed trust management as an alternative to traditional authentication and access control schemes in dynamic and pen computing environments such as multiagent systems, web services and pervasive computing. Distributed trust management handles security with techniques used in human societies, where people are judged on their abilities, assets, relationships and reputations. Authorization decisions are made through the application of relevant security and trust policies, expressed in a high-level declarative language. The policies define rules and constraints on agents (human or software) and the actions they can take on objects in terms of their credentials and properties. This work extends the principles of trust management with deontic notions of rights, obligations, and prohibitions. An ontology grounded in a semantic language (e.g., RDF, DAML or OWL) is used to represent security information constituting credentials, policies, beliefs, and proofs as well as relevant domain-specific properties to characterize the agents, actions and objects. An important results will be a better understanding of how the semantic web can address the critical issues of security, trust and privacy in distributed open environments. The new concepts and techniques will be evaluated and demonstrated through the implementation of prototype tools and applications.

Start Date: June 2003

End Date: September 2006

Faculty:
Anupam Joshi

Students:
Lalana Kagal
Pranam Kolari
Anjali Bharat Shah

Tags: semantic web, security, trust, policy

 

There are 31 associated publications:
 Click here for a full list...

 

There are 14 associated resources:  Hide the list...

1. A Policy Specification Language for Governing Open, Dynamic Distributed Environments, Presentation.

2. Authorization and Privacy for Semantic Web Services, Web Site.

3. Chiacs 2004 presentation, Presentation.

4. DAS poster, Poster.

5. Integrated Development Environment for Policies, Presentation.

6. Modeling Conversation Policies as Policies, Presentation.

7. RAP Implementation Presentation, Presentation.

8. RAP: RDF Access-control Policies Presentation, Presentation.

9. Rei in Task Computing, Presentation.

10. Rei in Task Computing Movie, Web Site.

11. Rei and RUles, Presentation.

12. Rei examples, Web Site.

13. Rei Ontologies, Web Site.

14. Rei Specifications, Web Site.

 

Research Areas:
 Security, Trust and Privacy
 Semantic Web