arXiv Open Access 2025

Authentication and authorization in Data Spaces: A relationship-based access control approach for policy specification based on ODRL

Irene Plaza-Ortiz Andres Munoz-Arcentales Joaquín Salvachúa Carlos Aparicio Gabriel Huecas +1 lainnya

Lihat Sumber

Abstrak

Data has become a crucial resource in the digital economy, fostering initiatives for secure and sovereign data sharing frameworks such as Data Spaces. However, these distributed environments require fine-grained access control mechanisms that balance openness with sovereignty and security. This paper proposes an extension of the Open Digital Rights Language (ODRL) standard, the ODRL Data Spaces (ODS) profile, aimed at supporting authorization and complementing existing authentication mechanisms throughout the data lifecycle. Additionally, a policy execution engine is introduced to translate ODRL policies into executable formats, enabling effective enforcement. The approach is validated through a use case involving OpenFGA, demonstrating its applicability to relationship-based access control scenarios.

Topik & Kata Kunci

cs.CR cs.ET

Penulis (6)

Irene Plaza-Ortiz

Andres Munoz-Arcentales

Joaquín Salvachúa

Carlos Aparicio

Gabriel Huecas

Enrique Barra

Format Sitasi

APA MLA BibTeX

Plaza-Ortiz, I., Munoz-Arcentales, A., Salvachúa, J., Aparicio, C., Huecas, G., Barra, E. (2025). Authentication and authorization in Data Spaces: A relationship-based access control approach for policy specification based on ODRL. https://arxiv.org/abs/2505.24742

Akses Cepat

Lihat di Sumber

Informasi Jurnal

Tahun Terbit: 2025
Bahasa: en
Sumber Database: arXiv
Akses: Open Access ✓