Professional Documents
Culture Documents
ABSTRACT
Most researchers are used to file-based access control of research data, including
locating data by storing it on a local disk.
In HydroShare, we are implementing a social mechanism for data access and control, in
which regular users can:
create, administer, and destroy groups of users, and
share resources to which they have access with other users or groups,
based upon a social model of data access and sharing
member
group
Change
assistant 2
own
Own
group
HydroShare
resource
researcher
assistant 1
View
GOALS
view
change
assistant 3
View
member
assistant 2
assistant 3
member
assistant 1
access control policies: that determine what can be done and under what
conditions, and that are enforced by
SOCIAL POLICIES
group
co-PI 2
own
Own
HydroShare
resource
PI
co-PI 1
Own
member
change
own
CONCLUSIONS
co-PI 3
Own
member
This mechanism for data sharing is a bold departure from traditional data sharing
methods, and a first step toward data sharing unfettered by the limits of file-based
sharing.
co-PI 2
co-PI 3
co-PI 1
Further work is necessary, however, to help users easily browse data by metadata
contents rather than traditional aids like file and folder names.
External Clients
Django REST
Django Website
Python calls
IMPLEMENTATION STATUS
Python API freely available from http://github.com/hydroshare/IrodsShare
Pursuing final integration into HydroShare
iRODS
REST
iRODS MicroServices,
REST, iCommands
iRODS
iCommands
IrodsShare API
Dynamic Policy
Enforcement
Points
iRODS
iRODS
Repository
SQL
group
At this point, it is impossible to tell whether extra flexibility will aid or impede research.
member
SYSTEM ARCHITECTURE
In any social sharing system, one must be wary of abuse, spam and unsolicited
communications.
Search for lost data via metadata, type, privilege, and other
attributes.
While these mechanisms are based upon those in google drive, dropbox, and other
products, they are considerably more flexible in some ways, especially in how groups are
formed.
Own
TRANSITIVE PRIVILEGE
owns + can view
owns
CRITIQUE
PI
owns
Problem
SQL
IrodsShare
Database
ACKNOWLEDGEMENTS