W3C home > Mailing lists > Public > semantic-web@w3.org > September 2008

SPARQL Security - Best Practices?

From: Brian Manley <brian.manley@gmail.com>
Date: Tue, 2 Sep 2008 10:55:24 -0700
Message-Id: <A8294586-1735-4A0D-B805-C6001AB2361B@gmail.com>
To: semantic-web@w3.org

All,

Have any best-practices emerged with regard to authentication and  
authorization for SPARQL endpoints?

It appears that using basic HTTP authentication and security methods  
(basic realm authentication, SSL, etc. ) are sufficient for access to  
an endpoint, but what about authorization at the triple level? For  
example, restricting the triples that are queriable by an  
authenticated user?

My initial instinct is to use named graphs (user "A" can only query  
graph "A"). But that seems rather limiting, as I might want to devise  
a hierarchical authorization scheme where, for example, a manager can  
query on a subordinate's triples. Perhaps I can take some of the ideas  
for row-level security in the relational database world (though  
everything I find is patented).

Has this been done? By who? Got a link? :)

Any thoughts or pointers on this would be appreciated.

Best Regards,

Brian Manley
http://blog.triplescape.com
Received on Tuesday, 2 September 2008 17:56:04 GMT

This archive was generated by hypermail 2.3.1 : Tuesday, 26 March 2013 21:45:25 GMT