English

Access control for Data Spaces

Cryptography and Security 2025-04-21 v1

Abstract

Data spaces represent an emerging paradigm that facilitates secure and trusted data exchange through foundational elements of data interoperability, sovereignty, and trust. Within a data space, data items, potentially owned by different entities, can be interconnected. Concurrently, data consumers can execute advanced data lookup operations and subscribe to data-driven events. Achieving fine-grained access control without compromising functionality presents a significant challenge. In this paper, we design and implement an access control mechanism that ensures continuous evaluation of access control policies, is data semantics aware, and supports subscriptions to data events. We present a construction where access control policies are stored in a centralized location, which we extend to allow data owners to maintain their own Policy Administration Points. This extension builds upon W3C Verifiable Credentials.

Keywords

Cite

@article{arxiv.2504.13767,
  title  = {Access control for Data Spaces},
  author = {Nikos Fotiou and Vasilios A. Siris and George C. Polyzos},
  journal= {arXiv preprint arXiv:2504.13767},
  year   = {2025}
}

Comments

in Proc. of 28th Conference on Innovation in Clouds, Internet and Networks (ICIN 2025), Paris, France, 2025

R2 v1 2026-06-28T23:03:24.771Z