%0 Book Section %1 stojanov2017authorization %A Stojanov, Riste %A Jovanovik, Milos %B ICT Innovations 2017 %D 2017 %E Trajanov, Dimitar %E Bakeva, Verica %I Springer %K authorization datasecurity informationsecurity itsecurity linkeddata myown rdf semanticwebtechnologies sparql %P 205-218 %R 10.1007/978-3-319-67597-8_20 %T Authorization Proxy for SPARQL Endpoints %U https://link.springer.com/chapter/10.1007/978-3-319-67597-8_20 %V 778 %X A large number of emerging services expose their data using various Application Programming Interfaces (APIs). Consuming and fusing data form various providers is a challenging task, since separate client implementation is usually required for each API. The Semantic Web provides a set of standards and mechanisms for unifying data representation on the Web, as well as means of uniform access via its query language – SPARQL. However, the lack of data protection mechanisms for the SPARQL query language and its HTTP-based data access protocol might be the main reason why it is not widely accepted as a data exchange and linking mechanism. This paper presents an authorization proxy that solves this problem using query interception and rewriting. For a given client, it solely returns the permitted data for the requested query, defined via a flexible policy language that combines the RDF and SPARQL standards for policy definition. %@ 978-3-319-67596-1

@inbook{stojanov2017authorization, abstract = {A large number of emerging services expose their data using various Application Programming Interfaces (APIs). Consuming and fusing data form various providers is a challenging task, since separate client implementation is usually required for each API. The Semantic Web provides a set of standards and mechanisms for unifying data representation on the Web, as well as means of uniform access via its query language – SPARQL. However, the lack of data protection mechanisms for the SPARQL query language and its HTTP-based data access protocol might be the main reason why it is not widely accepted as a data exchange and linking mechanism. This paper presents an authorization proxy that solves this problem using query interception and rewriting. For a given client, it solely returns the permitted data for the requested query, defined via a flexible policy language that combines the RDF and SPARQL standards for policy definition.}, added-at = {2017-09-11T17:21:18.000+0200}, author = {Stojanov, Riste and Jovanovik, Milos}, biburl = {https://www.bibsonomy.org/bibtex/2aceefd41bd351786d18f7546f7c3b8cf/mjovanovik}, booktitle = {ICT Innovations 2017}, doi = {10.1007/978-3-319-67597-8_20}, editor = {Trajanov, Dimitar and Bakeva, Verica}, eventtitle = {ICT Innovations 2017: Data-Driven Innovation}, interhash = {632a4acc3cc7ee1d90f41af80132dc45}, intrahash = {aceefd41bd351786d18f7546f7c3b8cf}, isbn = {978-3-319-67596-1}, issn = {1865-0929}, keywords = {authorization datasecurity informationsecurity itsecurity linkeddata myown rdf semanticwebtechnologies sparql}, month = sep, pages = {205-218}, publisher = {Springer}, series = {Communications in Computer and Information Science}, timestamp = {2017-09-12T11:30:22.000+0200}, title = {Authorization Proxy for SPARQL Endpoints}, url = {https://link.springer.com/chapter/10.1007/978-3-319-67597-8_20}, volume = 778, year = 2017 }