Difference between revisions of "AccessControl"

From Linked Data Platform
Jump to: navigation, search
(How to Contribute)
Line 11: Line 11:
  
 
Contributors, please include a brief description and example.
 
Contributors, please include a brief description and example.
 
+
Ideally, this page will provide a little orientation and analysis of the resources in [http://www4.wiwiss.fu-berlin.de/bizer/SWTSGuide/ Chris Bizer's Semantic Web Trust and Security Resource Guide]
  
 
== Identity ==
 
== Identity ==

Revision as of 11:30, 2 November 2012

This page collects content for a future Note on Use Cases and Requirements for Access Control to be produced by the Linked Data Platform WG. The LDP Charter states:

The Working Group will not produce a Recommendation specifying solutions for access control and authentication for Linked Data. However the Working Group may identify, based on a set of real world use cases, requirements for authentication and authorization technologies for use with Linked Data.

Deliverable, Not Recommendation Track: Access Control: Working Group Note on Use Cases and Requirements for access control and authentication mechanisms needed for this work.

1 How to Contribute

Contributors, please include a brief description and example. Ideally, this page will provide a little orientation and analysis of the resources in Chris Bizer's Semantic Web Trust and Security Resource Guide

2 Identity

2.1 WebID / FOAF+SSL

3 Access Control

3.1 W3C(ish) WebAccessControl

Grant Read|Write|Append|Control permissions for a principle identified by a URL to access another URL.

3.1.1 Examples

[acl:accessTo <card.rdf>; acl:mode acl:Read, acl:agentClass foaf:Agent].
[acl:accessTo <card.rdf>; acl:mode acl:Read, acl:Write;  acl:agent <card#i>].

This means that anyone may read card.rdf, and <card#i> can write it.


[acl:accessTo <card.rdf>; acl:mode acl:Read, acl:agentClass foaf:Agent].
[acl:accessTo <card.rdf>; acl:mode acl:Write;  acl:agent <card#i>].

Because acl:agent has domain foaf:Agent the last line implies that <card#i> is a foaf:Agent.


3.2 SAML (non-RDF)