Controlled query evaluation (CQE) is an approach for confidentiality-preserving query answering where a function called censor alters query answers so that users can never infer data that are protected by a policy given in terms of logic formulae. In this paper, we review some foundational results we have recently found in the context of CQE over Description Logic ontologies. In more detail, we discuss the main characteristics of two notions of censor, CQ censor and GA censor, focusing on the computational complexity of query answering and on the notion of indistinguishability. The latter is a desirable property imposing that a censor always makes a user believe that the underlying data instance might not contain confidential data. As for computational aspects, we characterize the data complexity of answering conjunctive queries for the relevant and practical case of DL-LiteR ontologies. Since neither CQ censors nor GA censors enjoy both indistinguishability and tractability of query answering in the analyzed setting, we finally recall the notion of IGA censors, a sound approximation of GA censors which instead enjoys both properties, thus paving the way for robust and practical CQE for DL-LiteR ontologies.
A Gentle Introduction to Controlled Query Evaluation in DL-Lite Ontologies / Cima, Gianluca; Lembo, Domenico; Marconi, Lorenzo; Rosati, Riccardo; Savo, Domenico Fabio. - In: SN COMPUTER SCIENCE. - ISSN 2662-995X. - 5:(2024). [10.1007/s42979-024-02652-4]
A Gentle Introduction to Controlled Query Evaluation in DL-Lite Ontologies
Gianluca Cima
;Domenico Lembo
;Lorenzo Marconi
;Riccardo Rosati
;Domenico Fabio Savo
2024
Abstract
Controlled query evaluation (CQE) is an approach for confidentiality-preserving query answering where a function called censor alters query answers so that users can never infer data that are protected by a policy given in terms of logic formulae. In this paper, we review some foundational results we have recently found in the context of CQE over Description Logic ontologies. In more detail, we discuss the main characteristics of two notions of censor, CQ censor and GA censor, focusing on the computational complexity of query answering and on the notion of indistinguishability. The latter is a desirable property imposing that a censor always makes a user believe that the underlying data instance might not contain confidential data. As for computational aspects, we characterize the data complexity of answering conjunctive queries for the relevant and practical case of DL-LiteR ontologies. Since neither CQ censors nor GA censors enjoy both indistinguishability and tractability of query answering in the analyzed setting, we finally recall the notion of IGA censors, a sound approximation of GA censors which instead enjoys both properties, thus paving the way for robust and practical CQE for DL-LiteR ontologies.| File | Dimensione | Formato | |
|---|---|---|---|
|
Cima_A-gentle_2024.pdf
accesso aperto
Note: DOI https://doi.org/10.1007/s42979-024-02652-4
Tipologia:
Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza:
Creative commons
Dimensione
1.24 MB
Formato
Adobe PDF
|
1.24 MB | Adobe PDF |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
