The Data Usage Control module of PLATOON has been developed by modifying the open-source IDS Dataspace Connector . Specifically, version v5.0.1 of the Dataspace Connector has been used as the starting point for the development, extracting the Java packages required for this module. This code has been improved by adding the following new functionalities:
- REST services to get, upload and remove the Contract Agreements from the Contract Agreements storage. The format of these Contract Agreements is the one specified by the IDS Information Model . These contracts will be used to apply the Data Usage Control enforcement.
- A REST service to apply the Data Usage Control enforcement on the input data according to the Contract Agreements related to the pair consumer-producer indicated as input parameters.
- A new policy is supported which indicates if the data contains Personal Data, in which case the module invokes CaPe for each data set belonging to a specific data subject. CaPe will filter out the content that is consented by each data subject.
This module does not include the Contract Negotiation process. This negotiation process is carried out outside this module and the Contract Agreements are provided to the Usage Control when negotiated.
The Data Usage Control is composed of the following components:
-
Database store, where the Contract Agreements are stored. This database contains the following tables:
- Contract_store: the whole contract agreement content in JSON-LD format is stored in the “contract_as_string” column as an AES-256 encrypted string.
- Rule_store: a contract may contain several rules. Each of these rules is stored in this table and the rule content in JSON-LD format is stored in the "rule_content” column AES-256 encrypted string.
- Access_store: this table stores the number of times a consumer has accessed a specific target/data, in the “num_access” column. This table is used to apply the policy pattern “N Times Usage”
-
The Contract Agreement Controller, which implements the REST services to get, update and remove the Contract Agreements in the database.
-
The Usage Control module, which applies the usage control enforcement over the input data according to the rules specified in the corresponding Contract Agreements.
-
The REST Controller.
The steps to be taken to do enforcement are the following:
-
- Once the consumer and provider connectors have negotiated and established a Contract Agreement, this Contract Agreement is stored in the Data Usage Control by invoking the corresponding REST service.
-
- The usage control enforcement REST service is invoked before transferring the data from the Provider Connector to the Consumer Connector (parameter consuming=false), and before transferring the data from the Consumer Connector to the Data App (parameter consuming=true). This service will return the data according to the policies defined in the Contract Agreement.
The data Usage Control module supports usage policies written in the IDS Usage Control Language based on ODRL. The policy patterns supported by the Data Usage Control module are the following ones:
- Allow the Usage of the Data: provides data usage without any restrictions.
- Prohibit the Usage of the Data: prohibits data usage.
- Interval-restricted Data Usage: provides data usage within a defined time interval. (interval defined with start end end date)
- Duration-restricted Data Usage: allows data usage for a defined time period. (duration calculated from contract start date)
- Role-restricted Data Usage: allows data usage for a defined role. (for example http://example.com/ids-role:riskManager)
- Purpose-restricted Data Usage Policy: allows data usage for defined purpose. (for example http://example.com/ids-purpose:Marketing)
- Restricted Number of Usages: allows data usage for n times.
- Connector restrict Data Usage: allows data usage for defined connector
- Security level restricted Data Usage: allows data usage for defined connector security level
- Personal Data: filter out the contents of the data according to the data subject´s consents. To apply this rule, the Usage Control module interacts with CaPe.
NOTE: In case of trying to apply policy pattern that is not supported by Data Usage Control module, error 400 - Policy is not supported will be returned.
From root of the project run following command:
docker build .
This will create docker image; specific tag can also be added to the command simply by using -t {tag:version}
PIP (Policy Information Point) is required for enforcing some of the policies, like Role and Purpose restricted. This external service will be used to provide information for those policies. To change/configure which values connector should have (which purpose and role of the connector are) pip.property file can be configured.
pip.role=http://example.com/ids-role:riskManager
pip.purpose=http://example.com/ids-purpose:Marketing
pip.purposeName=Marketing
Following Dockerfile can be used to build docker image, simply by invoking:
docker build --no-cache -t {tag:version} .
and when running docker image, be sure to provide volume containing pip.properties file, since that file is mandatory for this service. Simple docker-compose service can be like:
version: '3.5'
services:
pip:
image: rdlabengpa/ids_uc_data_app_platoon_pip:v1.0.0
container_name: 'pip-container'
ports:
- 8085:8085
volumes:
- ./etc:/etc
Once docker image is up and running, Swagger-UI can be used to verify that valid values will be returned.
To start up the Platoon Data Usage, run the following command inside the directory "Docker_Tecnalia_DataUsage" of the docker-compose.yml file: docker-compose up -d
There are 2 supported database profiles:
- PostgreSQL - this profile will require to have configured PostgreSQL as a service, either as installed application or running as docker container. To check DB related properties for PostgreSQL, please check src/main/resources/application-POSTGRES.properties
When running as SpringBoot application, set -Dprofile=POSTGRES - H2 (in memory db) - for faster use of UsageControl dataApp, this profile might be more suitable, since it does not require additional service, like in PostgreSQL profile.
Property file can be found in src/main/resources/application-H2.properties, and when running as SpringBoot, -Dprofile=H2
After starting the application, all information about API is available as Swagger documentation on: PlatoonDataUsage SwaggerUI
For adding and testing contract agreements, two main controllers are:
- Contract-agreement-controller - controller used for CRUD operations on contract agreements
- Enforce-usage-controller-agreement - controller for enforcing existing policies
Examples of all policies can be found in Policies_example folder, from where all of them can be used for testing purpose.
NOTE: Be aware of the dates in policies example, change them according to actual dates.
Usage Control application is configured to use GitHub Actions when new branch is pushed. This will enforce to run existing tests to check if functionality is not broken. Tests that will be performed are following:
- allow data usage
- connector restricted usage
- duration restricted usage
- interval restricted usage
- prohibit data access
- purpose based access
- restrict number of usages
- role based usage
- security level restricted
Each test case performs following:
- insert defined policy
- enforce usage and verify successful expected result
- performs policy update to prohibit data access
- enforce policy and verify prohibited data access
Once new policy enforcement is implemented, it should be covered with new GitHub Action test, to cover same testcase like existing ones.
For more details about tests, please check ci folder.
Licensed under the Apache 2.0. See LICENSE.txt for more details.