Information access using ontologies
1 Assignment
0 Petitions
Accused Products
Abstract
A method for data access includes defining an ontology for application to a set of diverse data sources (58) comprising data having predefined semantics, and associating with the ontology one or more logical rules applicable to the semantics of the data in the data sources. Upon receiving a query from a user regarding the data, a query plan is determined for responding to the query by selecting one or more of the data sources responsively to the ontology and by identifying an operation to be applied to the data responsively to the applicable logical rules. A response to the query is then generated in accordance with the query plan.
322 Citations
123 Claims
-
1-4. -4. (canceled)
-
6-7. -7. (canceled)
-
9-27. -27. (canceled)
-
28. A method for data access, comprising:
-
defining an ontology for application to a set of diverse data sources comprising data;
defining data access rights with respect to the ontology; and
controlling user access to the data responsively to the ontology of the data and the access rights applicable thereto. - View Dependent Claims (5, 8, 29, 30, 31, 34, 118, 119)
-
-
32-33. -33. (canceled)
-
35. A method for exchange of information, comprising:
- establishing a virtual private network among a plurality of nodes, comprising at least first and second nodes, which are configured to communicate with one another over an underlying public physical network;
defining a semantic communication model for conveying data packets among the nodes in the virtual private network, responsively to an ontology of the information;
sending a data packet over the virtual private network from the first node to the second node; and
filtering the data packet against the semantic communication model at the second node, so as to verify that the data packet is legitimate. - View Dependent Claims (36, 37)
- establishing a virtual private network among a plurality of nodes, comprising at least first and second nodes, which are configured to communicate with one another over an underlying public physical network;
-
38-66. -66. (canceled)
- 67. Apparatus for data access, comprising a hub processor, which is adapted to receive a definition of an ontology for application to a set of diverse data sources comprising data and a definition of data access rights with respect to the ontology, and which is adapted to control user access to the data responsively to the ontology of the data and the access rights applicable thereto.
-
68. (canceled)
-
71-73. -73. (canceled)
-
74. Apparatus for exchange of information, comprising a plurality of computing nodes, which comprise at least first and second nodes, and which are linked to communicate over a virtual private network running over an underlying public physical network, and which are configured to exchange data packets over the virtual private network in accordance with a semantic communication model, which is defined responsively to an ontology of the information, wherein at least the second node is adapted, upon receiving a data packet over the virtual private network from the first node, to filter the data packet against the semantic communication model so as to verify that the data packet is legitimate.
-
75-105. -105. (canceled)
- 106. A computer software product, comprising a computer-readable medium in which program instructions are stored, which instructions, when read by a computer, cause the computer to receive a definition of an ontology for application to a set of diverse data sources comprising data and a definition of data access rights with respect to the ontology, and to control user access to the data responsively to the ontology of the data and the access rights applicable thereto.
-
107. (canceled)
-
109-112. -112. (canceled)
-
113. A computer software product, comprising a computer-readable medium in which program instructions are stored, which instructions, when read by a group of computing nodes that includes at least first and second nodes, linked to communicate over a physical public network, cause the computing nodes to communicate in a virtual private network by exchanging data packets over the public physical network in accordance with a semantic communication model, which is defined responsively to an ontology of the information, wherein the instructions cause at least the second node, upon receiving a data packet over the virtual private network from the first node, to filter the data packet against the semantic communication model so as to verify that the data packet is legitimate.
-
114-117. -117. (canceled)
Specification