[poe] Issue: Note on Policy Inference marked as Model

riannella has just labeled an issue for https://github.com/w3c/poe as "Model":

== Note on Policy Inference ==
@simonstey has provided a [Policy Inference](https://www.w3.org/2016/poe/wiki/Policy_Inference) with a very clear and useful workflow of expanding compact assertions of a policy to a list of atomic permissions and prohibitions.

Pondering how this can be used for checking if a user is permitted/prohibited to take an action on an asset I got aware of a foggy area in such a practical context: the odrl:partOf (in the document also the older odrl:memberOf) relationships.
The key issue is that at the moment of processing a Policy the processor might not know all the partOf_s W3C and of Dataset1.
I think the use case a processor is facing is: a specific user wants to taken an action on a specific asset, this needs to be evaluated. First the processor must find out if a partOf relationship is set between the specific user and the assignee W3C and if the specific asset has a partOf relationship with the target Dataset1. Such partOf relationships will be set in many cases outside a policy and this may cause practical problems.
By that the Inferred column of the Policy Inference paper is richer than it will be for such a "check the permission" use case.
The nice side: less expanded atomic rules will be created.

See https://github.com/w3c/poe/issues/201

Received on Tuesday, 27 June 2017 04:16:24 UTC