Access control for web of building data: Challenges and directions

Web of Building Data enables open publication of building-related data on the Web. However, a large part of building data requires access control for reasons of facility security, resident privacy, competition, and IPR protection. The linking across multiple models at different hosts creates challenges to implement an access control scheme that could avoid repeated and tedious registrations and authentications by users, and enable simple definition of the access control rules at different hosts. In this study the access control challenges of practical use cases are analyzed, objectives for access control are summarized, and possible decentralized access control solutions are explored. The focus is on WebId+TLS and OpenId Connect. The importance of common ontologies for role or property based access control is discussed.