Foundational Components for B2B Data Sharing Using the Solid Protocol
DOI:
https://doi.org/10.13052/jwe1540-9589.2445Keywords:
Solid, authorization, access control, data sharing, access granting, zero trust, data sovereigntyAbstract
This article introduces foundational components for decentralized B2B data sharing based on the solid protocol, emphasizing data sovereignty, security, and interoperability.
These components are: (1) Authorization app (AuthApp) – facilitating granular control and compliance in access granting and revocation processes; (2) rights delegation proxy (RDP) – supporting controlled delegation of rights, enabling natural persons to act on behalf of organizations while ensuring privacy and traceability; (3) data provisioning proxy (DPP) – allowing seamless and secure data provisioning across organizations while masking the identity of upstream data sources to protect business interests.
The components enable the creation of end-to-end, standards-based, flexible data value chains. We validate their applicability through a real-world financial services use case involving loan processing, which illustrates data sharing and protection challenges in B2B ecosystems.
Downloads
References
Pol Antràs and Davin Chor. Chapter 5 – global value chains. In Gita Gopinath, Elhanan Helpman, and Kenneth Rogoff, editors, Handbook of International Economics: International Trade, Volume 5, volume 5 of Handbook of International Economics, pages 297–376. Elsevier, 2022.
Hadrien Bailly, Anoop Papanna, and Rob Brennan. Prototyping an end-user user interface for the Solid Application Interoperability Specification under GDPR. In Catia Pesquita, Ernesto Jimenez-Ruiz, Jamie McCusker, Daniel Faria, Mauro Dragoni, Anastasia Dimou, Raphael Troncy, and Sven Hertling, editors, The Semantic Web, pages 557–573. Springer Nature, 2023.
Justin Bingham, Eric Prud’hommeaux, and Elf Pavlik. Solid Application Interoperability. W3C Editor’s Draft., 2023.
Matthieu Bosquet. Access control policy (acp). Editor’s draft, W3C Solid Community Group, 2022.
Andreas Both, Thorsten Kastner, Dustin Yeboah, Christoph Braun, Daniel Schraudner, Sebastian Schmid, Tobias Käfer, and Andreas Harth. AuthApp – portable, reusable solid app for GDPR-compliant access granting. In Web Engineering: 24th International Conference, ICWE 2024, Tampere, Finland, Proceedings, page 199–214. Springer-Verlag, 2024.
Andreas Both, Dustin Yeboah, Thorsten Kastner, Daniel Schraudner, Sebastian Schmid, Christoph Braun, Andreas Harth, and Tobias Käfer. Towards Solid-based B2B data value chains. In 21st Extended Semantic Web Conference (ESWC 2024), 2024.
Arnaud Braud, Gaël Fromentoux, Benoit Radier, and Olivier Le Grand. The road to European digital sovereignty with GAIA-X and IDSA. IEEE Netw., 35(2):4–5, 2021.
Christoph H.-J. Braun and Tobias Käfer. Self-verifying web resource representations using Solid, RDF-star and signed URIs. In The Semantic Web: ESWC 2022 Satellite Events, pages 138–142, Cham, 2022. Springer.
Christoph H.-J. Braun and Tobias Käfer. Web push notifications from Solid Pods. In Tommaso Di Noia, In-Young Ko, Markus Schedl, and Carmelo Ardito, editors, Web Engineering, pages 487–490, Cham, 2022. Springer International Publishing.
Sarven Capadisli. Web access control. Editor’s draft, W3C Solid Community Group, 2022.
Sarven Capadisli, Tim Berners-Lee, Ruben Verborgh, and Kjetil Kjernsmo. Solid Protocol, December 2021.
Sarven Capadisli, Amy Guy, Christoph Lange, Sören Auer, Andrei Sambra, and Tim Berners-Lee. Linked data notifications: A resource-centric communication protocol. In The Semantic Web, pages 537–553, Cham, 2017. Springer International Publishing.
Aaron Coburn, Elf Pavlik, and Dmitri Zagidulin. Solid-OIDC, March 2022. https://solidproject.org/TR/oidc.
Edward Curry, Simon Scerri, and Tuomo Tuikka. Data Spaces: Design, Deployment, and Future Directions, pages 1–17. Springer International Publishing, Cham, 2022.
Roy Thomas Fielding. Architectural Styles and the Design of Network-based Software Architectures. PhD thesis, University of California, Irvine, 2000.
Michael J. Franklin, Alon Y. Halevy, and David Maier. From databases to dataspaces: a new abstraction for information management. SIGMOD Rec., 34(4):27–33, 2005.
Michele M Hughes. Remedying financial abuse by agents under a power of attorneys for finances. Elder’s Advisor, 2:39, 2000.
Matthias Jarke, Boris Otto, and Sudha Ram. Data sovereignty and data space ecosystems. Business & Information Systems Engineering, 61:549–550, 2019.
Tobias Käfer and Andreas Harth. Specifying, monitoring, and executing workflows in linked data environments. In The Semantic Web – ISWC 2018 – 17th International Semantic Web Conference, Monterey, CA, USA, Proceedings, Part I, volume 11136 of Lecture Notes in Computer Science, pages 424–440. Springer, 2018.
Liena Kano, Eric W. K. Tsang, and Henry Wai-chung Yeung. Global value chains: A review of the multi-disciplinary literature. J. of International Business Studies, 51(4), 2020.
Essam Mansour, Andrei Vlad Sambra, Sandro Hawke, Maged Zereba, Sarven Capadisli, Abdurrahman Ghanem, Ashraf Aboulnaga, and Tim Berners-Lee. A demonstration of the Solid platform for social web applications. In Proceedings of the 25th International Conference Companion on World Wide Web, WWW ’16 Companion, page 223–226. International World Wide Web Conferences Steering Committee, 2016.
Sascha Meckler, Rene Dorsch, Daniel Henselmann, and Andreas Harth. The Web and Linked Data as a Solid Foundation for Dataspaces. In Companion Proceedings of the ACM Web Conference 2023, WWW ’23 Companion, page 1440–1446. Association for Computing Machinery, 2023.
Boris Otto, Michael ten Hompel, and Stefan Wrobel, editors. Designing Data Spaces: The Ecosystem Approach to Competitive Advantage. Springer, 2022.
Axel Polleres, Beatriz Esteves, and Bert Bos. Data Privacy Vocabulary (DPV). Final Community Group Report, Data Privacy Vocabularies and Controls Community Group, May 2022.
Eric Prud’hommeaux and Justin Bingham. Shape Trees Specification. https://shapetrees.org/TR/specification/.
Eric Prud’hommeaux, José Emilio Labra Gayo, and Harold R. Solbrig. Shape expressions: an RDF validation and transformation language. In Harald Sack, Agata Filipowska, Jens Lehmann, and Sebastian Hellmann, editors, Proceedings of the 10th International Conference on Semantic Systems, SEMANTiCS 2014, Leipzig, Germany, September 4-5, 2014, pages 32–40. ACM, 2014.
Manoharan Ramachandran, Niaz Chowdhury, Allan Third, John Domingue, Kevin Quick, and Michelle Bachler. Towards complete decentralised verification of data with confidentiality: Different ways to connect Solid Pods and blockchain. In Companion Proceedings of the Web Conference 2020, WWW ’20, page 645–649. Association for Computing Machinery, 2020.
N. Sakimura, J. Bradley, M. Jones, B. de Medeiros, and C. Mortimore. OpenID connect core 1.0. Final specification, 2014.
Andrei Sambra, Henry Story, and Tim Berners-Lee. Webid 1.0 – web identity and discovery. W3c editor’s draft, W3C, 2014.
Andrei Vlad Sambra, Essam Mansour, Sandro Hawke, Maged Zereba, Nicola Greco, Abdurrahman Ghanem, Dmitri Zagidulin, Ashraf Aboulnaga, and Tim Berners-Lee. Solid: a platform for decentralized social applications based on linked data. MIT CSAIL & Qatar Computing Research Institute, Tech. Rep., 2016.
Sebastian Schmid, Daniel Schraudner, and Andreas Harth. The Rights Delegation Proxy: An Approach for Delegations in the Solid Dataspace. In Proceedings of the Second International Workshop on Semantics in Dataspaces (SDS 2024) co-located with the 21st Extended Semantic Web Conference (ESWC 2024), 2024.
Oshani Seneviratne, Amy van der Hiel, and Lalana Kagal. Tim Berners-Lee’s Research at the Decentralized Information Group at MIT, page 201–213. ACM, 1 edition, 2023.
Valentin Siegert, Dirk Leichsenring, and Martin Gaedke. Trusting decentralized web data in a solid-based social network. In Kostas Stefanidis, Kari Systä, Maristella Matera, Sebastian Heil, Haridimos Kondylakis, and Elisa Quintarelli, editors, Web Engineering – 24th International Conference, ICWE 2024, Tampere, Finland, June 17-20, 2024, Proceedings, volume 14629 of Lecture Notes in Computer Science, pages 230–245. Springer, 2024.
Steve Speicher, John Arwe, and Ashok Malhotra. Linked Data Platform 1.0. W3c recommendation, W3C, 2015.
The European Parliament and the Council of the European Union. Regulation (EU) 2016/679 (General Data Protection Regulation) GDPR, 2016.
Tim Berners-Lee et al. Solid.
Ruben Verborgh. Re-decentralizing the Web, For Good This Time, page 215–230. ACM, 1 edition, 2023.
Xinni Wang, Christoph H.-J. Braun, Andreas Both, and Tobias Käfer. Using schema.org and Solid for linked data-based machine-to-machine sales contract conclusion. In Companion Proceedings of the Web Conference 2022, WWW ’22, page 269–272. Association for Computing Machinery, 2022.
Zhi Wang, Shang-Jin Wei, Xinding Yu, and Kunfu Zhu. Characterizing global value chains: Production length and upstreamness. Working Paper 23261, National Bureau of Economic Research, March 2017.
Jeroen Werbrouck, Pieter Pauwels, Jakob Beetz, and Léon van Berlo. Towards a decentralised common data environment using linked building data and the Solid ecosystem. In 36th CIB W78 Conference, pages 113–123, 2019.
Werbrouck, Jeroen and Pauwels, Pieter and Beetz, Jakob and van Berlo, Léon. Towards a decentralised common data environment using linked building data and the solid ecosystem. In Advances in ICT in Design, Construction and Management in Architecture, Engineering, Construction and Operations (AECO) : Proceedings of the 36th CIB W78 2019 Conference, pages 113–123, 2019.
Jesse Wright, Beatriz Esteves, and Rui Zhao. Me want cookie! towards automated and transparent data governance on the web. CoRR, abs/2408.09071, 2024.
