Ontologies.final.policies.Car-Park-Security.ttl Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of ic-query-validator Show documentation
Show all versions of ic-query-validator Show documentation
The Integrity Constraints Query Validator component created by SEERC in the course of PaaSword project.
@prefix ex1: .
@prefix foaf: .
@prefix schema: .
@prefix owl: .
@prefix rdfs: .
@prefix pwd: .
@prefix otp: .
@prefix pbe: .
@prefix pbdfd: .
@prefix pac: .
@prefix rdf: .
@prefix usdl-core: .
@prefix usdl-business-roles: .
@prefix usdl-sec: .
@prefix orgX: .
@prefix gr: .
@prefix pcm: .
@prefix pdm: .
@prefix skos: .
@prefix ppm: .
@prefix pcpm: .
@prefix xsd: .
### This is the Car Park security use case we present in D2.2, with some extensions related
### to refersTo, subsumptions and contradictions.
### Instantiated cryptographic policy set ###################################
ex1:BootstrappingCryptoPolicySet_1 a pbe:BootstrappingCryptoPolicySet.
ex1:BootstrappingCryptoPolicy_1 a pbe:BootstrappingCryptoPolicy;
pbe:belongsToCryptoPolicySet ex1:BootstrappingCryptoPolicySet_1;
pbe:hasBootStrappingCryptoRule ex1:BootstrappingCryptoRule_1.
ex1:BootstrappingCryptoRule_1 a pbe:BootstrappingCryptoRule;
pbe:hasControlledObject ex1:PaymentCreditCardNo;
pbe:hasCryptoElement ex1:AES256.
ex1:PaymentCreditCardNo a pcm:Relational.
ex1:AES256 a pdm:Symmetric.
#############################################################################
### Instantiated data fragmentation and distribution policy set #############
ex1:BootstrappingDFDPolicySet_1 a pbdfd:BootstrappingDFDPolicySet.
ex1:BootstrappingDFDPolicy_1 a pbdfd:BootstrappingDFDPolicy;
pbdfd:belongsToDFDPolicySet ex1:BootstrappingDFDPolicySet_1;
pbdfd:hasBootstrappingDFDRule ex1:BootstrappingDFDRule_1.
ex1:BootstrappingDFDRule_1 a pbdfd:BootstrappingDFDRule;
pbdfd:hasControlledObject ex1:PaymentsTable;
pbdfd:hasDFDElement ex1:VerticalFragmentation_1.
ex1:PaymentsTable a pcm:Relational.
ex1:VerticalFragmentation_1 a pdm:VerticalFragmentation.
#############################################################################
### Instantiated ABAC rule template ################################
# The first two rules are subsumed.
ex1:ABACRule_1 a pac:ABACRule;
pac:hasControlledObject ex1:PaymentsTable;
pac:hasAuthorisation pac:positive;
pac:hasAction ex1:Read;
pac:hasActor ex1:ParkingEmployee;
pac:hasContextExpression ex1:expr.
ex1:PaymentsTable a pcm:Relational.
pac:positive a pac:Authorisation.
ex1:Read a ppm:DatastorePermission.
ex1:ParkingEmployee a pcm:Person.
ex1:ABACRule_2 a pac:ABACRule;
pac:hasControlledObject ex1:PaymentsTable;
pac:hasAuthorisation pac:positive;
pac:hasAction ex1:Read;
pac:hasActor ex1:ParkingEmployee;
pac:hasContextExpression ex1:expr2.
# This contradicts to rule 1
ex1:ABACRule_3 a pac:ABACRule;
pac:hasControlledObject ex1:PaymentsTable;
pac:hasAuthorisation pac:negative;
pac:hasAction ex1:Read;
pac:hasActor ex1:ParkingEmployee;
pac:hasContextExpression ex1:expr.
ex1:DepartmentAPaymentsTable a pcm:Relational.
ex1:ParkingSectionAEmployee a pcm:Person.
ex1:ParkingSectionAArea1Employee a pcm:Person.
ex1:Write a ppm:DatastorePermission.
#############################################################################
### Context expression for ex1:ABACRule_1 and ex1:ABACRule_2 #############
ex1:expr a pac:ANDContextExpression;
pac:hasParameter ex1:EmployeeWorkingHours, ex1:expr1 .
ex1:expr2 a pac:ANDContextExpression;
pac:hasParameter ex1:EmployeeWorkingHours3, ex1:Parking1 ;
pac:refersTo ex1:ParkingEmployee .
ex1:EmployeeWorkingHours a pcm:DateTimeInterval.
ex1:EmployeeWorkingHours2 a pcm:DateTimeInterval.
ex1:EmployeeWorkingHours3 a pcm:DateTimeInterval.
# Custom alignment to otp namespace
pac:isSubsumedBy owl:inverseOf otp:subsumes .
ex1:EmployeeWorkingHours2 pac:isSubsumedBy ex1:EmployeeWorkingHours .
ex1:EmployeeWorkingHours2 pac:subsumes ex1:EmployeeWorkingHours3 .
ex1:PaymentsTable pac:subsumes ex1:DepartmentAPaymentsTable .
ex1:ParkingEmployee pac:subsumes ex1:ParkingSectionAEmployee .
ex1:ParkingSectionAEmployee pac:subsumes ex1:ParkingSectionAArea1Employee .
ex1:expr1 a pac:ORContextExpression;
pac:hasParameter ex1:Parking1, ex1:Parking2 ;
pac:refersTo ex1:ParkingEmployee .
ex1:Parking1 a pcm:Point.
ex1:Parking2 a pcm:Point.
### Instantiated ABAC policy ################################################
ex1:ABACPolicySet_1 a pac:ABACPolicySet;
pac:hasPolicySetCombiningAlgorithm ex1:denyUnlessPermit.
ex1:ABACPolicy_1 a pac:ABACPolicy;
pac:belongsToABACPolicySet ex1:ABACPolicySet_1;
pac:hasPolicyCombiningAlgorithm ex1:denyUnlessPermit;
pac:hasABACRule ex1:ABACRule_1, ex1:ABACRule_2, ex1:ABACRule_3 .
ex1:denyUnlessPermit a pac:PolicyCombiningAlgorithms, pac:PolicySetCombiningAlgorithms.
#############################################################################