Using Semantic Technologies for Managing Access Control Policies
Share this Session:
  Evren Sirin   Evren Sirin
Clark & Parsia, LLC


Thursday, December 1, 2011
08:30 AM - 09:20 AM
Level:  Technical - Introductory

Location:  Ballroom D

Access control is an essential part of nearly every IT system especially in domains dealing with sensitive information such as financial accounts, personal health records, etc. Oasis standard XACML provides a high-level XML-based language to describe access control policies for distributed resources. However, as systems get larger and more complex, the maintenance and analysis of these policies become an expensive and burdensome task.

In this talk, we describe how semantic technologies and automated reasoning techniques can be used to address the policy management problem. We explain how policy analysis services such as formal policy verification, unit testing, and redundancy detection can be provided for XACML policies. We will also discuss how Web Ontology Language (OWL) ontologies can be used to enhance XACML policies with richer descriptions of roles and resources.

This talk will include

  • Discussions about the importance of managing access control policies
  • Brief introduction to XACML policies
  • Using semantic technologies for policy analysis
  • Short demo based on open-source ontology reasoner Pellet
  • Enrichment of XACML polices with OWL

Dr. Evren Sirin is the Chief Technology Officer of Clark & Parsia, LLC. He is responsible for the ongoing design, maintenance, and implementation of the OWL 2 reasoner Pellet along with other C&P products based on semantic technologies. His areas of expertise include automated reasoning for Web ontologies, Description Logic (DL) reasoning, and AI planning. Before joining C&P, Dr. Sirin was a graduate research assistant at the MINDSWAP research group directed by Prof. Jim Hendler and received his PhD degree in Computer Science from University of Maryland, College Park in 2006. He authored many publications in top-tier journals and conferences about the Semantic Web and contributed to the standardization efforts for OWL and OWL-S.

Close Window