W3C home > Mailing lists > Public > public-rdf-dawg-comments@w3.org > January 2006

Re: major technical: no privilege model

From: Richard Newman <r.newman@reading.ac.uk>
Date: Thu, 12 Jan 2006 14:57:44 -0800
Message-Id: <687F83E2-EB33-4496-8B9B-E83D7A216F9D@reading.ac.uk>
Cc: public-rdf-dawg-comments@w3.org
To: Fred Zemke <fred.zemke@oracle.com>

I'd call this utterly outside of the scope of SPARQL.

Fine-grained privilege control for RDF is a hard, largely-unsolved  
problem.

-R

On 12 Jan 2006, at 13:44, Fred Zemke wrote:

>
> There is no security or privilege model.  I suppose this might be  
> construed
> that there is a very coarse-grained privilege, either a user can see
> a graph (ie, the implementation resolves the graph's IRI for the user)
> or not.  And implementations might take that a step further and
> arrange things so that one IRI might name a subgraph of another IRI.
> If the graph or the user community is large,
> the administrator will probably prefer the ability to control access
> with fine-grained privileges. For example, the administrator may  
> wish to
> grant or deny access to triples on the basis of the predicate, the  
> subject,
> the object, or perhaps by reachability from selected starting nodes.
> Fred Zemke
>
Received on Thursday, 12 January 2006 22:57:50 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:14:49 GMT