Our policy aware approach to access control is also a response to the observation that typical security architectures involve the requesting party doing very little computation -- typically, just providing a username/password, or perhaps computing a message digest and/or digital signature -- and the party providing and controlling access being obliged and trusted to derive the correct access control decision. Execution of even relatively inflexible policies described above depends on enormous trusted computing bases, generally including the entire operating system kernel, apache, php, databases, etc. PAW avoids the risk inherent in this complexity and provides a decentralized security model for the Semantic Web which is flexible and scalable.
As our research progresses, we will address the following new challenges:
The project is a collaboration with Prof. J. Hendler, University of Maryland MIND Lab. Funding through National Science Foundation ITR 04-012 (award #0427275).
 Weitzner, Hendler, Berners-Lee, Connolly, Creating the Policy-Aware Web: Discretionary, Rules-based Access for the World Wide Web in Elena Ferrari and Bhavani Thuraisingham, editors, Web and Information Security. IOS Press, 2005.
 Weitzner, Abelson, Berners-Lee, et al., "Transparent Accountable Data Mining: New Strategies for Privacy Protection", MIT CSAIL Technical Report MIT-CSAIL-TR-2006-007 (27 January 2006).
 Berners-Lee, T., CWM A general purpose data processor for the Semantic Web, 2000. http://www.w3.org/2000/10/swap/doc/cwm.html
Computer Science and Artificial Intelligence Laboratory (CSAIL)
The Stata Center, Building 32 - 32 Vassar Street - Cambridge, MA 02139 - USA
tel:+1-617-253-0073 - email@example.com