188 ◾ Secure Data Provenance and Inference Control
We would translate this internally to either a SWRL or DL rule:
(?d hasDept X) ∧ (?record locatedIn X) → (?d hasAccess ?Record)
which could mean if a doctor is located in the patient’s ward then allow the doctor
to access the patients record.
∃Dept.X ⊆ ∃hasAccess.Record
which means that someone who is a doctor and is in dept X is someone who has
access to a patient’s record.
12.3 Inference Controller Process
To tackle the inference problem, we should explicitly represent all information avail-
able to users and mimic the reasoning strategies of users. A query log could identify the
activities of the user and a database could record all information released to the user.
ese two activities c