The Establishment And Application Of Relation Based Access Control Ontology

Semantic Web Since its introduction, for the development and application of descriptionlogic (DL) has a rapid development rapid development. In the Semantic Web, information andresources are structured; ontology described the relationship between the various resources.The world is linked, so the complex relationship between resources can show a wealth ofsemantic information. Semantic Web resources can be understanding, reasoning, processingby the computer. User accessing to resources can also be controlled by a new access controlmodel: the relationship-based access control model RelBAC.The RelBAC model is to use the authorization (PERMISSION) to connect subject andobject, so it can be easier on the authority of the dynamic modeling, easy analysis. For theRelBAC model, has been to build a relatively complete, and its authorization rules definitionand analysis of the description logic language. But no actual access control in large-scaleapplication. Depth study of this authorization rules, combined with some specific methods,proposing the establishment of the authorized body to open up a road to the specificapplication of the RelBAC model.In this paper, we had an overview of the Semantic Web and related technologies, andgive an introduction of the description logic language to prepare the model authorization ruleson RelBAC. And this paper provides methods and tools RelBAC authorized the establishmentof the rule ontology with the introduction of the methods and tools to establish the generaldomain ontology.In this paper, we analysis the model and its authorization rules with the ontology objectattributes classification and combined with actual access needs. To represent the objectproperty constraints in the body authorized RelBAC model with the same constraints, and theonly generalization between different RelBAC access to the subject or the object of arelationship between the inherited classes. In this paper, we can create comprehensive accessto the main access to the ontology of the object and authorization set to control access. Suchaccess needs can be converted in the ontology within the query, and the system can useexisting ontology reasoning tools to identify access authorization results.Transformed into the specific authorization rules and the general authorization rules, we find out the establishing RelBAC ontology model method combined with the reality of accesscontrol needs. We study the reality of access control and environmental constraints to theontology model and the impact of the body complexity to propose new solutions. We find outa general authorization ontology modeling method through discussed Single authorization,hierarchical authority and environmental constraints.Through the research of the authorized ontology RelBAC model reasoning，this paperfind the method of choice in the model reasoning. By comparison of several ontologicalinference engines, find a more suitable model of the inference engine. The results of differentauthorization constraint ontology reasoning can find the various constraints on the accesscontrol ontology reasoning, and thus the ontology of the visit is constrained preference. Thisarticle compares two environmental constraints handling access control ontology reasoning tofind the more suitable method to solve the problem of environmental constraints.