-
Notifications
You must be signed in to change notification settings - Fork 63
/
wotsec.template.html
129 lines (115 loc) · 4.75 KB
/
wotsec.template.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
<!DOCTYPE html>
<html>
<head>
<meta charset='utf-8'>
<title>Web of Things (WoT) Security Ontology</title>
<script src='https://www.w3.org/Tools/respec/respec-w3c' class='remove'></script>
<script class='remove'>
var respecConfig = {
specStatus: "ED",
latestVersion: null,
// publishDate: "2023-12-05",
group: "wg/wot",
editors: [{
name: "Victor Charpenay"
}, {
name: "Michael McCool"
}],
edDraftURI: "https://www.w3.org/2019/wot/security",
shortName: "wot-sec-ontology",
otherLinks: [{
key: "Ontology in RDF",
data: [
{
value: "Web of Things (WoT) Security Ontology in RDF",
href: "wotsec.ttl",
}
]
}
]
};
</script>
</head>
<body>
<section id='abstract'>
<p>
This document introduces an RDF vocabulary for the security metadata definitions.
This vocabulary provides a stable namespace IRI for security keywords, as well as simple axioms, defined against schema.org's meta-model.
Examples on how to use the vocabulary are also introduced.
</p>
</section>
<section id='sotd'>
</section>
<section>
<h2>Introduction</h2>
<p>
This documents provides an ontology of a selection of well-established security mechanisms that are directly built into protocols eligible as <a>Protocol Bindings</a> for W3C WoT
or are widely in use with those protocols.
The current set of HTTP security schemes is partly based on
<a href="https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.1.md#security-scheme-object">OpenAPI
3.0.1</a> (see also [[?OPENAPI]]).
However while the HTTP security schemes, Vocabulary, and syntax given in this specification share many similarities with OpenAPI, they are not compatible.
</p>
<p>
Please note that the Turtle version of the ontology can be always obtained by doing content negotiation as explained in
<a href="https://www.w3.org/TR/2023/REC-wot-thing-description11-20231205/#json-ld-ctx-usage">Appendix D of the Thing
Description Recommendation</a>.
You can include <code>Accept: text/turtle</code> in the request to obtain the Turtle version of this ontology.
</p>
</section>
<section id="conformance"></section>
<section id="terminology">
<h2>Terminology</h2>
<p>The fundamental WoT terminology such as
<dfn class="lint-ignore">Thing</dfn>,
<dfn class="lint-ignore">Consumer</dfn>,
<dfn class="lint-ignore">Thing Description</dfn> (<dfn class="lint-ignore">TD</dfn>),
<dfn class="lint-ignore">Interaction Model</dfn>,
<dfn class="lint-ignore">Interaction Affordance</dfn>,
<dfn class="lint-ignore">Property</dfn>,
<dfn class="lint-ignore">Action</dfn>,
<dfn class="lint-ignore">Event</dfn>,
<dfn class="lint-ignore">Protocol Binding</dfn>,
<dfn class="lint-ignore">Servient</dfn>,
etc. is defined in <a href="https://www.w3.org/TR/wot-architecture/#terminology">Section 3</a>
of the WoT Architecture specification [[WOT-ARCHITECTURE]].
</p>
<p>
The Thing Description terminology such as
<dfn class="lint-ignore">TD Information Model</dfn>,
<dfn class="lint-ignore">TD Document</dfn>,
<dfn class="lint-ignore">Term</dfn> (<dfn class="lint-ignore">Vocabulary Term</dfn>), <dfn class="lint-ignore">TD Context Extension</dfn>
etc. is defined in <a href="https://www.w3.org/TR/wot-thing-description/#terminology">Section 3</a>
of the WoT Thing Description specification [[WOT-THING-DESCRIPTION]].
</p>
</section>
<!-- axioms rendered from RDF definitions -->
%s
<section>
<h2>Usage Examples</h2>
<section>
<h3>Extended Configuration</h3>
<aside class="example" title="Bearer token authentication as a JSON-LD verifiable presentation">
<pre>
{
"@context": [
"https://www.w3.org/wot/td/v1",
{
"cred": "https://www.w3.org/2018/credentials#",
"sec": "https://w3id.org/security#"
}
],
"securityDefinitions": {
"extendedBearer": {
"scheme": "bearer",
"format": "cred:VerifiablePresentation",
"alg": "sec:RsaSignature2018"
}
}
}
</pre>
</aside>
</section>
</section>
</body>
</html>