netidee
Usage Control for Solid
via A Blockchain-driven Architecture (22.08.2023)
Förderjahr 2019 / Science Call #3 / ProjektID: / Projekt: PENNI: Richtlinienbasiertes Internet der nächsten Generation

Davide Basile recently presented our joint work with Claudio Di Ciccio and Valerio Goretti on 'A Blockchain-driven Architecture for Usage Control in Solid' at the 1st Workshop on Fintech and Decentralized Finance (FiDeFix) @ the 43rd IEEE International Conference on Distributed Computing Systems.

Decentralized projects like Solid and Digi.me seek to increase data owners’ control over their data while also giving people and small organizations access to information that is typically managed by centralized platforms. The Solid community aims to achieve this objective by building web standards and best practices that make data integration simple and encourage the creation of decentralized social apps based on Linked Data concepts. However, Solid currently only supports basic access control, and thus it is not possible to ensure that data consumers adhere to usage restrictions specified by data owners. To overcome this limitation, we propose a decentralized usage control architecture that resorts to a blend of blockchain applications and trusted execution environments. We extend the state of the art by demonstrating (i) how blockchain oracles allow for seamless communication between these entities, and (ii) how Solid applications can be enhanced with usage control mechanisms. In the proposed architecture, users’ data are kept in Solid personal online datastores. Access is administered through a component named pod manager. The usage control is handled by blockchain executable applications that are capable of (i) recording where data resides, (ii) declaring what the usage restrictions are, and (iii) monitoring compliance with these policies. Applications that leverage data stored in Solid pods run in a trusted execution environment, which enables users to revoke access if data consumers do not adhere to the usage policies. Finally, blockchain oracles enable pod managers and trusted execution environments to communicate with the blockchain and vice versa. We illustrate the application of our architecture and highlight its effectiveness in the in the context of data markets.

Sabrina Kirrane

Profile picture for user Sabrina Kirrane
Sabrina Kirrane is an assistant professor at the Vienna University of Economics and Business Institute for Information Systems and New Media. Her research interests include Security, Privacy, and Policy aspects of the Next Generation Internet (NGI), Distributed and Decentralised Systems, Big Data and Data Science, with a particular focus on policy representation and reasoning (e.g., access constraints, usage policies, regulatory obligations, societal norms, business processes), and the development of transparency and trust techniques.
CAPTCHA
Diese Frage dient der Überprüfung, ob Sie ein menschlicher Besucher sind und um automatisierten SPAM zu verhindern.

    Weitere Blogbeiträge

    TemporalFC

    This paper presents TEMPORALFC, a temporal factchecking approach that uses multiple sources of background knowledge to assess the veracity and temporal validity of a given assertion.
    Netidee Blog Bild

    GUCON

    Robust Usage Control (UC) mechanisms are necessary to protect sensitive data and resources, especially when these are distributed across multiple nodes or users. Existing solutions have limitations in expressing and enforcing usage control policies d...

    Blockchain Based Resource Governance

    Decentralization initiatives such as Solid, Digi.me, and ActivityPub aim to give data owners more control over their data and to level the playing field by enabling small companies and individuals to gain access to data, thus stimulating innovation. ...

    A Semantic Policy Language for Usage Control

    Usage control involves the encoding and enforcement of policies regarding future data use in the areas of data protection, intellectual property management, and secrets management. Proposed policy languages are either too specific or too general in t...

    Misinformation Detection: Using Linguistic Cues

    Misinformation could potentially have severe consequences for society, ranging from healthcare to politics.

    Following the rules: From Policies to Norms

    Since its inception, the world wide web has evolved from a medium for information dissemination, to a general information and communication technology that supports economic and societal interaction and collaboration across the globe. Existing web-ba...

    Governance of Autonomous Agents on the Web

    This paper motivates the need for alignment and joint research across the Multiagent Systems, Semantic Web, and WoT communities.

    The Linked Legal Data Landscape

    In this paper we describe a methodology to transform the existing legal information system used in Austria to such a legal knowledge graph covering different steps from modeling national specific aspects, to population, and finally the integration.

    Intelligent Software Web Agents

    Semantic web technologies have shown their effectiveness, especially when it comes to knowledge representation, reasoning, and data integrations. However, the original semantic web vision, whereby machine readable web data could be automatically acti...

    From ISWC2020 to Blockchain2020 and Back

    In these Covid19 times you can not only attend a conference without having to leave the comforts of your own home but it's actually possible to attend two conferences at once.

    Wirtschaftsuniversität Wien Researcher of the Month

    Computer scientist Sabrina Kirrane is our October Researcher of the Month.
    Datenschutzinformation
    Impressum | Datenschutz
    Der datenschutzrechtliche Verantwortliche (Internet Privatstiftung Austria - Internet Foundation Austria, Österreich) würde gerne mit folgenden Diensten Ihre personenbezogenen Daten verarbeiten. Zur Personalisierung können Technologien wie Cookies, LocalStorage usw. verwendet werden. Dies ist für die Nutzung der Website nicht notwendig, ermöglicht aber eine noch engere Interaktion mit Ihnen. Falls gewünscht, können Sie Ihre Einwilligung jederzeit via unserer Datenschutzerklärung anpassen oder widerrufen.
    Sonstige Inhalte (1 Dienst)
    Einbindung zusätzlicher Informationen
    YouTube
    Google Ireland Limited, Irland
    Alle Detailszu YouTube
    Alle Detailszu YouTube