ODRL Formal Semantics

This document specifies the expected behaviour of an ODRL Evaluator, a piece of software that performs computations based on a set of policies, a request and a certain state of the world.

Introduction

The Open Digital Rights Language (ODRL) is a policy expression language that can be used to represent permitted, prohibited, and obligated actions over a certain asset.

The ODRL Information Model formally defines the core abstract concepts of the model and their properties by means of an OWL 2 Ontology (available at https://www.w3.org/ns/odrl/2/), which is described in the ODRL Vocabulary & Expression specification. This document does not contradict these documents, and its interpretation is subordinate to theirs.

The ODRL ontology can be used as a data model to represent machine-readable Policies and associate them with digital or analog assets. By using a machine-readable language to represent policies, ODRL implementations can provide useful functionalities such as those of a policy search engine, a policy compatibility checker, an access control system, a monitoring system, or a policy planning system, among others.

However, neither the specification of the model (in a text form) nor the vocabulary (in an OWL ontology) accurately describes the behaviour of an ODRL Evaluator. The objective of an ODRL Evaluator is to determine:

which Permissions, Prohibitions, and/or Obligations (collectively named Rules) are active in a given instant of time. A Rule is said to be active if it is in effect;
which Prohibitions and Obligations have been violated or fulfilled.

This document describes the expected behaviour of an ODRL Evaluator, with a textual description and a collection of examples.

When the ODRL Evaluator evaluates Permissions, it is expected to work in at least one of these two scenarios:

Access control scenario: the ODRL Evaluator determines the access by users or software agents to digital resources considering a set of policies, the state of the world, and the description of the action that a user requests to perform on certain digital resources. It may be useful to distinguish between requested and attempted action. When an agent attempts to perform an action, e.g. an agent double-clicks on a picture, if the action is not permitted the attempt is recorded and if it is the case sanctioned. In the case of a request, only the answer is generated: either the action is permitted or the action is denied.
Policy monitoring scenario (also known as compliance checking or usage control): given a set of policies and the description of the state of the world that includes the actions actually performed, the ODRL Evaluator has to determine whether obligations or prohibitions have been fulfilled or violated by the performance of certain actions, and which permissions are active.

Document Conventions

Within this document, the following namespace prefix bindings are used:

Prefix	Namespace	Description
odrl	http://www.w3.org/ns/odrl/2/	[[odrl-vocab]] [[odrl-model]]
odrl-fs	to be defined	Resources defined by this spec
rdf	http://www.w3.org/1999/02/22-rdf-syntax-ns#	[[rdf11-concepts]]
rdfs	http://www.w3.org/2000/01/rdf-schema#	[[rdf-schema]]
owl	http://www.w3.org/2002/07/owl#	[[owl2-overview]]
xsd	http://www.w3.org/2001/XMLSchema#	[[xmlschema11-2]]
skos	http://www.w3.org/2004/02/skos/core#	[[skos-reference]]
dcterms	http://purl.org/dc/terms/	[[dcterms]]
vcard	http://www.w3.org/2006/vcard/ns#	[[vcard-rdf]]
foaf	http://xmlns.com/foaf/0.1/	[[foaf]]
schema	http://schema.org/	schema.org
cc	https://creativecommons.org/ns#	creativecommons.org
ex	http://example.com/ns#

Terminology

Condition. An instance of the class odrl:Duty represents a Condition for a odrl:Permission when the odrl:Permission refers to it by means of the odrl:duty property.
Consequence. An instance of the class odrl:Duty represents a Consequence for a odrl:Duty when the odrl:Duty refers to it by means of the odrl:consequence property.
Constraint. An instance of the class odrl:Constraint is a Constraint of a odrl:Rule when the rule refers to it by means of the odrl:constraint property.
Obligation. An instance of the class odrl:Duty is an Obligation of a odrl:Policy when the odrl:Policy refers to it by means of the odrl:obligation property.
Refinement. An instance of the class odrl:Constraint is a Refinement when an odrl:Action, odrl:AssetCollection or odrl:PartyCollection refers to it by means of the odrl:constraint property.
Remedy. An instance of the class odrl:Duty represents a Remedy for a odrl:Prohibition when the odrl:Prohibition refers to it by means of the odrl:remedy property.

ODRL Evaluator

The ODRL Evaluator uses as input:

a Policy;
a formal description of the State of the World;
a formal description of an Evaluation Request that contains at least a description of an action (e.g. the type of the action, the actor who is located in a given place, the target, and an instant of time);

The ODRL Evaluator produces as output:

an Evaluation Report;

This section describes the State of the World, the Evaluation Request and the Evaluation Report.

State of the World

The ODRL Evaluator requires a formal representation of the state of the world. The state of the world specifies knowledge representing real-world information that aids the evaluation of ODRL Policies. For example, a certain state of the world may include the current date and time, the location of agents, or the history of performed actions.

This document aims to provide a formal representation for the state of the world concepts that are necessary to evaluate ODRL policies, without forcing the usage of existing vocabularies, e.g., country codes can be modelled using the ISO 3166 and UN M49 standards. Furthermore, the formal representation of this information will be specified as RDF triples. The existence of these triples does not entail their represented world is a reality: the factuality of the class instances is not entailed, and hypothetical computations are possible. The implementor of the ODRL Evaluator may want to describe the factuality of relevant class instances. RDF triples to represent the state of the world may be generated as observations from the world generated by third parties or by the ODRL Evaluator itself.

As such, in this document, we aim to provide a minimal set of information that needs to be represented in the state of the world and respective definitions, which will be formally represented in an RDF vocabulary:

SotW: A set of knowledge representing real-world information aiding the evaluation of ODRL Policies
currentTime: Denotes the current time of the state of the world
location: Denotes the location where the policy is being evaluated
assetCollection: Denotes an asset that is part of an asset collection
partyCollection: Denotes a party that is part of a party collection
report: Denotes existing reports from previously performed ODRL evaluations, i.e., to get history of attempted and performed actions
count: Denotes the amount of times a rule has been exercised
event: Denotes information about an event that has occurred, e.g., when it has occurred
accumulatedTime: Denotes an accumulated amount of time a rule has been exercised
recipient: Denotes information about a recipient of a rule that has been exercised

Since we do not want to force the objects of the state of the world triples to be modelled using a specific vocabulary, in this example we abstract it away by using URIs, e.g., ex:currentTime to associate a certain state of the world with the current time.

                @prefix ex:   <https://ex.org/> .
                @prefix sotw: <https://ex.org/sotw#> .

                ex:sotw a sotw:SotW ;
                    sotw:currentTime ex:currentTime ;
                    sotw:location ex:location ;
                    sotw:assetCollection ex:asset ;
                    sotw:partyCollection ex:party ;
                    sotw:report ex:report ;
                    sotw:count ex:count ;
                    sotw:event ex:event ;
                    sotw:accumulatedTime ex:accumulatedTime ;
                    sotw:recipient ex:recipient .

Evaluation Request

An evaluator requires an Evaluation Request as input. The Evaluation Request, which is represented in RDF, is formally defined by the class odrl-fs:EvaluationRequest and MUST contain the following properties:

odrl:action: The action to be evaluated (e.g., use, read, modify).
odrl:assignee: The party (e.g., person or organization) requesting/requested the action.
odrl:target: The asset (e.g., file, document, data) on which the action is to be/was performed.
dcterms:issued: The time of the request.

Additional contextual information can also be included in the Evaluation Request, e.g., a purpose for exercising the requested action.

To ensure consistency, it is recommended that requests conform to the defined SHACL shapes.

For formal validation and integration, the odrl-fs:EvaluationRequest class is defined in an OWL ontology, with corresponding SHACL shapes specifying structural constraints and a JSON-LD context to ensure semantic consistency across RDF representations. These resources can be found at the following locations:

Alice requests the use of document 1234 to be evaluated.

                {
                  "@context": {
                    "http://www.w3.org/ns/odrl.jsonld",
                    "odrl-fs": "https://w3id.org/odrl-fs#"
                  },
                  "@type": "odrl-fs:EvaluationRequest",
                  "action": "odrl:use",
                  "assignee": {
                    "@id": "http://example.org/party/Alice"
                  },
                  "target": "http://example.com/document/1234"
                }

Evaluation Report

Pending to be written.

Semantics of Policies

There are three ODRL Policy subclasses (Agreement, Offer, Set), plus four non-normative ODRL Policy subclasses (Assertion, Privacy, Request, Ticket). Direct instances of the odrl:Policy class must be understood as policy odrl:Set policies. This subsection describes how are these policies to be understood in relation to semantics.

A odrl:Set policy must be considered by an ODRL Evaluator. The odrl:Set is not necessarily linked to odrl:Offer nor odrl:Agreement.
An odrl:Offer policy must not be considered by an ODRL Evaluator. It is created by an odrl:Assigner as a mere proposition.
An odrl:Agreement policy must be considered by an ODRL Evaluator as any other odrl:Set policy. It represents the accord between (at least) one odrl:Assigner and a odrl:Assignee. An instance of odrl:Agreement may have a way for the odrl:Assigner to trace to its related odrl:Offer.

Before providing the semantics of an ODRL Policy that may contain one or more Rules, we have to provide the semantics of the different types of ODRL Rules: Permission, Prohibition, and Obligation.

General semantics of Rules

The deontic modalities of permissions, prohibitions and obligations can be represented in ODRL as instances of the classes odrl:Permission, odrl:Prohibition and odrl:Duty.

Instances of the class odrl:Duty may have the following different meanings: Obligation, Condition, Consequence or Remedy. Instances of the class odrl:Constraint may have the meaning of: Constraint or Refinement.

The concepts (objects) to be understood by an ODRL Evaluator therefore include: Policy, Permission, Prohibition, Obligation, Condition (Duty), Consequence, Remedy, Refinement, Constraint, State of the World, and actions. Here follows a list of properties (with their possible values) needed by the ODRL Evaluator:

Permission, Prohibition, Obligation, and Condition (Duty) have a property called activation state, which can take the values of active or inactive.
Prohibition, Obligation, and Condition (Duty) have a property called deontic state, which can take the values of not-set, or violated, or fulfilled. They can become violated or fulfilled only when they are active.
An active prohibition can be violated many times by different actions, therefore when a prohibition is violated it is required to register the action that brings to the violation.
Permission has a property called control state, which can take the values of permit or deny of a specific action.
Constraint (connected to the Rule using the odrl:constraint property) has a property called satisfaction state which can take the values of satisfied or not-satisfied. A not-satisfied constraint may become satisfied and return to being not-satisfied. The value of the satisfaction state of a Constraint is calculated according to the state of the world. Constraints directly defined at policy level are not directly considered.
Refinement (connected to an Action, to an AssetCollection, or to a PartyCollection using the odrl:refinement property) has a property called satisfaction state which can take the values of satisfied or not-satisfied.

The mechanisms for computing the activation of Permissions, Prohibitions, and Obligations and the violation or fulfillment of Prohibitions and Obligations are all different. Therefore we continue by discussing the semantics of Permissions, Prohibitions, and Obligations in separated sections.

Semantics of Permissions

In ODRL 2.2 a Permission can be limited by duties, like making a payment, we call these Conditions. It can also be limited by Constraints (in time, in space, etc.). In addition, the definition of the permitted action, the asset, and the party collection can be refined with Refinements. The evaluation of these Conditions (duties) and Constraints determine whether the Permission is active (i.e., it permits the performance of an action that belongs to the class of action regulated by the permission and that satisfies all the refinements) or not. Permissions can be evaluated in two different scenarios: access control or monitoring.

In the access control scenario: when an action is requested, the activation of permissions is computed. If there is an active permission that permits such an action with all refinements satisdied, then action is permitted. If there is not an active permission that permits such an action with all refinements satisdied, then action is denied.

In the monitoring scenario: when an action is performed, it is represented in the state of the world. When the performace of the action has to be evaluated with respect to the permissions. If the performed action belongs to class of actions regulated by the active permission and all the refinements satisfied then the action is permitted by the permission. If the performed action does not belong to class of actions regulated the permission or the permission is inactive then the action is not permitted by the permission.

The ODRL Evaluator computes that a Permission is active iif:

All the existing Constraints of the Rule are satisfied AND;
All the existing Conditions (duties) of the Rule are fulfilled or inactive;

If one of those conditions is not met, the Permission is inactive.
The ODRL Evaluator computes that the action represented in the Evaluation Request is permitted by a Permission in the given State of the World iff:

The Permission is active AND
The action is the Evaluation Request belong to the permitted class of actions with the correct target and assigee (when they are specified) AND
All the refinements (related to action, target, and assignee) are satisfied.

Please note that in the following examples namespaces are used, so that http://example.com/constraint/ is simplified by "constraint:", http://example.com/policy/ is simplified by "policy:", etc.

Notation used in the example tables: blue colour for the input and red colour for the output of the ODRL Evaluator

Evaluation of Constraints

A1 Example of a constrained permission

Example description

A permission may have its action limited (in time, in space, etc.) without any Condition (Duty) or Refinement. This is the situation of the following case (similar to Example 13 in the ODRL Information Model 2.2). The permission below allows the target asset document:1234 to be distributed, it includes the constraint that the permission may only be exercised until 2018-01-01. The permission is granted by the organization party:16.

{
"@context": "http://www.w3.org/ns/odrl.jsonld",
"@type": "Set",
"uid": "http://example.com/policy/A1",
"permission": [{
   "@id": "http://example.com/rule/A1",
   "target": "http://example.com/document/1234",
   "assigner": "http://example.com/party/16",
   "action": "distribute",
   "constraint": [{
       "@id": "http://example.com/constraint/A1",
       "leftOperand": "dateTime",
       "operator": "lt",
       "rightOperand":  { "@value": "2018-01-01", "@type": "xsd:date" }
   }]
}]
}

Expected behaviour of the Evaluator

The ODRL Evaluator has to calculate first the activation state of the permission. The constraint must be evaluated on the state of the world, which must include a representation of the current time. As long as the current time is before the first day of 2018, the Permission is active. When the first day of 2018 is passed, the Permission is inactive. The action class regulated by the permission is distribute, the target is document:1234, and the assignee is not specified.

Case	Policy	State of the World	Evaluation Request	Satisfaction of class, target, assignee	Satisfaction state of `constraint:A1`	Activation state of the `permission`	Control state of the `permission`	Evaluation Report
A1-1	policy:A1	`currentTime` is 2017-12-19T15:00:00	party:1 distributes document:1234	satisfied	satisfied	active	permit the action	report
A1-2	policy:A1	`currentTime` is 2019-12-19T15:00:00	party:1 distributes document:1234	satisfied	not-satisfied	inactive	deny the action	report

Explanation:

(A1-1) If the action to be evaluated belongs to the class of actions regulated by the Permission and the Permission is active then the action is permitted by the permission.
(A1-2) If the action to be evaluated belongs to the class of actions regulated by the Permission, but the Permission is inactive, then the action is permitted by the permission.

Evaluation of Refinements

B1 Example of a permission whose permitted action has a refinement

Example description

The example below (which is similar to Example 14 in the ODRL Information Model 2.2) allows the target asset document:1234 to be printed and also include a refinement indicating that the resolution of the printing action must be less than or equal to 1200 dpi. The permission is granted by the organization party:616.

{
"@context": "http://www.w3.org/ns/odrl.jsonld",
"@type": "Set",
"uid": "http://example.com/policy/B1",
"permission": [{
    "@id": "http://example.com/rule/B1",
    "target": "http://example.com/document/1234",
    "assigner": "http://example.com/party/616",
    "action": [{
       	"rdf:value": { "@id": "odrl:print" },
        "refinement": [{
            "@id": "http://example.com/refinement/B1"
            "leftOperand": "resolution",
            "operator": "lteq",
            "rightOperand": { "@value": "1200", "@type": "xsd:integer" },
            "unit": "http://dbpedia.org/resource/Dots_per_inch"
        }]
    }]
}]
}

Expected behaviour of the Evaluator
The class of actions regulated by the Permission is print, the target is document:1234, and the assignee is not specified.

Case	Policy	Evaluation Request	Satisfaction of class, target, assignee	Satisfaction state of `refinement:B1`	Activation state of the `permission`	Control state of the `permission`	Evaluation Report
B1-1	policy:B1	`print` of `document:1234` with `resolution` less than 1200 dpi	satisfied	satisfied	active	permit the action	report
B1-2	policy:B1	`print` of `document:1234` with `resolution` more than 1200 dpi	satisfied	not-satisfied	active	deny the action	report

Explanation: the Permission is always active because it has neither Constraints nor Conditions (Duties).

(B1-1) If the requested or performed action belongs to the class of actions regulated by the Permission and the action satisfies the Refinement, then the action is permitted by the permission.
(B1-2) If the requested or performed actions belongs to the class of actions regulated by the Permission but it does not satisfy the Refinement, then the action is NOT permitted by the permission.

Evaluation of Conditions (Duties)

When a Permission contains Conditions (duties), they have to be evaluated first.

A Condition (duty) is fulfilled if all its constraints are satisfied and if its action, with all refinements satisfied, has been performed.

The initial state of a Condition (duty) is inactive.
If at least one of the Constraints of the Condition (duty) is not satisfied, then the duty is inactive. (For example, the duty to pay a ticket to get an active permission to enter in a museum may be active only on Sundays and inactive the other days).
If the Constraints of the Condition (duty) are all satisfied or there are no Constraints, then the duty is active.
If the Condition (duty) is active and an action that belongs to the class of actions regulated by the Condition with all refinements satisfied is performed, then Condition (duty) is fulfilled.

The life cycle of a Condition (duty) is depicted in the figure below:

Once the Condition (duty) has been evaluated, the Permission can be evaluated.
If the Condition is active but it is not fullfilled then the Permission is inactive.
If the Condition is fulfilled then the Permission is active.

Example of a conditioned permission

Example description

The example below (similar to Example 22 in the ODRL Information Model 2.2) is a Permission that is constrained by a Condition (Duty). The Condition does not have Constraints, but its action has a refinement. This permission is granted by party:sony for party:billie to play the target asset music:1999. The permission includes the Condition to perform the compensate action that has a refinement of payAmount of euro 5.00. The semantics of Permission requires that the compensate action (included in the duty) must be performed before the play action in order to get an active permission to perform the play action.

        {
        "@context": "http://www.w3.org/ns/odrl.jsonld",
        "@type": "Agreement",
        "uid": "http://example.com/policy/22",
        "permission": [{
            "assigner": "http://example.com/party/sony",
            "assignee": "http://example.com/party/billie",
            "target": "http://example.com/music/1999.mp3",
            "action": "play",
            "duty": [{
               "@id" : "http://example.com/condition/1",
               "action": [{
                  "rdf:value": { "@id": "odrl:compensate" },
                  "refinement": [{
                     "@id" : "http://example.com/refinement/1",
                     "leftOperand": "payAmount",
                     "operator": "eq",
                     "rightOperand": { "@value": "5.00", "@type": "xsd:decimal" },
                     "unit": "http://dbpedia.org/resource/Euro"
                  }]
                }]
            }]
        }]
        }

Expected behaviour of the Evaluator

The class of actions regulated by this Permission has type equal to play, object equal to the target of the permission, i.e. music:1999.mp3, and performer equal to the assignee of the permission, i.e. party:billie.

The condition (duty) have to be evaluated first. condition:1 does not have Constraints, so it is never inactive. It starts to be active and it is fulfilled when in the state of the world there is a representation of a performed action that matches with the the class of actions described in the condition:1.

The class of actions regulated by condition:1 has type equal to compensate, its payAmount is equal to 5 euro, and (given that the odrl:compensatedParty of the odrl:compensate action is not specified) its beneficiary is the assigner of the permission party:sony. It is not required that the agent who performs the compensate action is party:billie because, for example, a company can pay for its employees (feature for an ODRL profile: it would be useful for actions of compensation or payment to contain a reference to a policy or a rule and to the party for whom they are performed).

Access control or monitorin scenario:

Given a formal description of the requested or performed action, if such an action belongs to the class of actions regulated by the Permission and the Permission is active, then the action is permitted, otherwise it is denied.

Example	Policy	World	Requested/Performed Action	activation state of `condition:1`	deontic state of `condition:1`	activation state of the `permission`	control state of the `permission`
E22-1	policy:22	`compensate` with `payAmount` = `5 euro` and `beneficiary` = `party:sony` is not performed	`play` and `target` = `music:1999.mp3` and `performer` = `party:billie`	active	not-set	inactive	deny the action
E22-2	policy:22	`compensate` and `payAmount` = `5 euro` and `beneficiary` = `party:sony` is performed	`play` and `target` = `music:1999.mp3` and `performer` = `party:billie`	active	fulfilled	active	permit the action

Example of a permission whose condition has constraints

Example description

This policy contains a Permission constrained by a Condition (duty) (like in policy:22) with the difference that such Condition has constraints, it is only activated on Sundays.

        {
        "@context": "http://www.w3.org/ns/odrl.jsonld",
        "@type": "Agreement",
        "uid": "http://example.com/policy/88",
        "permission": [{
            "assigner": "http://example.com/party/sony",
            "assignee": "http://example.com/party/billie",
            "target": "http://example.com/music/1999.mp3",
            "action": "play",
            "duty": [{
                "@id" : "http://example.com/condition/1",
                "action": [{
                    "@id" : "http://example.com/action/payment",
                    "rdf:value": { "@id": "odrl:compensate" },
                    "refinement": [{
                        "@id" : "http://example.com/refinement/1",
                        "leftOperand": "payAmount",
                        "operator": "eq",
                        "rightOperand": { "@value": "5.00", "@type": "xsd:decimal" },
                        "unit": "http://dbpedia.org/resource/Euro"
                    }]
                }],
                "constraint": [{
                    "@id" : "http://example.com/constraint/1",
                    "leftOperand": "ex:dayOfWeek",
                    "operator": "eq",
                    "rightOperand": { "@value": "Sunday", "@type": "xsd:string" }
                }]
            }]
        }]
        }

Expected behaviour of the Evaluator

The class of actions regulated by condition:1 has type equal to compensate, its payAmount is equal to 5 euro, and (given that the odrl:compensatedParty of the odrl:compensate action is not specified) its beneficiary is the assigner of the permission party:sony.

condition:1 has to be evaluated first. Given that condition:1 has constraints it starts to be inactive and it becomes active when its Constraints are all satisfied (the state of the world satisfies its Constraints, i.e. the current date is a Sunday. For expressing this constraint an external vocabulary with the leftOperand ex:dayOfWeek is used). An active Constraint, it is also fulfilled when in the state of the world there is a representation of an performed action that matches with the class of actions described in the Constraint.

The permission can be evaluated as follows:
If the Condition is inactive (its Constraint is not satisfied), the Permission is active.
If the Condition is active but it is not fullfilled, the Permission is inactive.
If the Condition is fulfilled the Permission is active.

Access control or monitoring scenario:

Example	Policy	World	Requested/Performed Action	satisfaction of `constraint:1`	satisfaction of `refinement:1`	activation of `condition:1`	deontic state of `condition:1`	activation of the `permission`	control state of the `permission`
E88-1	policy:88	It is not Sunday	`play` and `target` = `music:1999.mp3` and `performer` = `party:billie`	not-satisfied	don't care	inactive	not-set	active	permit the action
E88-2	policy:88	It is Sunday `compensate` with `payAmount` = `5 euro` and `beneficiary` = `party:sony` is NOT performed.	`play` and `target` = `music:1999.mp3` and `performer` = `party:billie`	satisfied	not-satisfied	active	not-set	inactive	deny the action
E88-3	policy:88	It is Sunday `compensate` with `payAmount` = `5 euro` and `beneficiary` = `party:sony` is performed.	`play` and `target` = `music:1999.mp3` and `performer` = `party:billie`	satisfied	satisfied	active	fulfilled	active	permit the action

Example	Policy	World	satisfaction of `constraint:1`	activation of the `prohibition:1`	deontic state of the `prohibition:1`
E55-1	policy:55	`archive` of `photoAlbum:55` by `assignee:55` is performed before 2025-01-01	satisfied	active	violated by the action
E55-2	policy:55	`archive` of `photoAlbum:55` by `assignee:55` is NOT performed before 2025-01-01	satisfied	active	not-set
E19-3	policy:55	`archive` of `photoAlbum:55` by `assignee:55` is performed after 2025-01-01	not-satisfied	inactive	not-set

Example	Policy	World	activation of `obligation:1`	deontic state of `obligation:1`
E42-1	policy:42	`compensate` of `500 euro` by `party:44` to `party:43` is performed	active	fulfilled by the performed action
E42-2	policy:42	`compensate` of `500 euro` by `party:44` to `party:43` is NOT performed	active	not-set

References

[Wieringa93] Wieringa, R. J., & Meyer, J. J. C. (1993). Applications of deontic logic in computer science: A concise overview. Deontic logic in computer science, pp. 17-40 John Wiley & Sons.
[Gunter01] Gunter, C. A., Weeks, S. T., & Wright, A. K. (2001, January). Models and languages for digital rights. In System Sciences, 2001. Proceedings of the 34th Annual Hawaii International Conference on (pp. 5-pp). IEEE.
[ODRL02] Ianella, R. Open Digital Rights Language (ODRL) Version 1.1. Formerly available online.
[Pucella02] Pucella, R., &Weissman, V. (2002). A logic for reasoning about digital rights. In Computer Security Foundations Workshop, 2002. Proceedings. 15th IEEE (pp. 282-294). IEEE.
[XACML03] Anderson, A., Nadalin, A., Parducci, B., Engovatov, D., Lockhart, H., Kudo, M., ... & Moses, T. (2003). extensible access control markup language (xacml) version 1.0. OASIS.
[Delgado03] Delgado, J., Gallego, I., Llorente, S., & García, R. (2003, December). IPROnto: An ontology for digital rights management. In 16th Annual Conference on Legal Knowledge and Information Systems, JURIX (Vol. 106).
[Guth03] Guth, S., Neumann, G., &Strembeck, M. (2003, October). Experiences with the enforcement of access rights extracted from ODRL-based digital contracts. In Proceedings of the 3rd ACM workshop on Digital rights management (pp. 90-102). ACM.
[Pucella04] RiccardoPucella , Vicky Weissman. A formal foundation for ODRL, In Proc. of the Workshop on Issues in the Theory of Security (WIST’04)
[Wang04] Wang, X. (2004). MPEG-21 rights expression language: Enabling interoperable digital rights management. IEEE MultiMedia, 11(4), 84-87.
[García05] García, R., Gil, R., Gallego, I., & Delgado, J. (2005, July). Formalising ODRL semantics using web ontologies. In Proc. 2nd Intl. ODRL Workshop (pp. 1-10).
[Barth06] Adam Barth and John C. Mitchell. Managing digital rights using linear logic. In LICS ’06: Proceedings of the 21st Annual IEEE Symposium on Logic in Computer Science, pages 127–136,Washington, DC, USA, 2006. IEEE Computer Society
[Chong06] Chong, C. N., Corin, R., Doumen, J., Etalle, S., Hartel, P., Law, Y. W., &Tokmakoff, A. (2006). LicenseScript: a logical language for digital rights management. Annals of Telecommunications, 61(3), 284-331.
[Nadah07] Nadia Nadah, Melanie Dulong de Rosnay, Bruno Bachimont. Licensing Digital Content With A Generic Ontology: Escaping From The Rights Expression Language Jungle. ACM. ICAIL2007 - 11th international conference on Articial intelligence and law, Jun 2007, Stanford, United States. pp.65-69, 2007, Proceedings of the 11th international conference on Articial intelligence and law
[Gangadharan07] Gangadharan G.R., Weiss M., D’Andrea V., Iannella R. (2007) Service License Composition and Compatibility Analysis. In: Krämer B.J., Lin KJ., Narasimhan P. (eds) Service-Oriented Computing – ICSOC 2007. ICSOC 2007. Lecture Notes in Computer Science, vol 4749. Springer, Berlin, Heidelberg
[Jamkhedkar08] Pramod Arvind Jamkhedkar, Gregory L. Heileman. Conceptual Model For Rights. Proceedings of the 8th ACM workshop on Digital rights management Pages 29-38, 2008
[Sheppard09] Sheppard, N. P., &Safavi-Naini, R. (2009, November). On the operational semantics of rights expression languages. In Proceedings of the nineth ACM workshop on Digital rights management (pp. 17-28). ACM. (link)
[Kasten10] Andreas Kasten and Rüdiger Grimm. Making the Semantics of ODRL and URM Explicit Using Web Ontologies. Virtual Goods, pages 77–91, 2010.
[Villata12] Serena Villata and FabienGandon. Licenses compatibilityand composition in the web of data. In The 2ndInternational Workshop on Consuming Linked Data.2012.
[Rodriguez13] Rodríguez-Doncel, V., Suárez-Figueroa, M. C., Gómez-Pérez, A., & Poveda-Villalón, M. (2013, October). License linked data resources pattern. In Proceedings of the 4th International Conference on Ontology and Semantic Web Patterns-Volume 1188 (pp. 84-87). CEUR-WS. org.
[Rotolo13] Antonino Rotolo, Serena Villata, and Fabien Gandon. A deontic logic semantics for licenses composition in the web of data. In Int’l Conf. on Artificial Intelligence and Law ICAIL, pages 111–120, 2013.
[Steyskal14] Simon Steyskal and Axel Polleres. Defining expressive access policies for linked data using the ODRL ontology 2.0. In Proceedings of the 10th International Conference on Semantic Systems, SEMANTICS 2014, Leipzig, Germany, September 4-5, 2014, pages 20–23, 2014
[Cabrio14] Elena Cabrio, Alessio Palmero Aprosio, and Serena Villata. These are your rights - A natural language processing approach to automated RDF licenses generation. In The Semantic Web: Trends and Challenges - 11th International Conference, ESWC 2014, Anissaras, Crete, Greece, May 25-29, 2014. Proceedings, pages 255– 269, 2014
[Ianella15b] R. Iannella, M. Steidl, S. Guth (eds). Open Digital Rights Language (ODRL) Version 2.1 – Common Vocabulary. Final Specification, W3C ODRL Community Group http://www.w3.org/community/odrl/vocab/2.1/
[Ianella15] R. Iannella& S. Guth& D. Paehler& A. Kasten (eds). Open Digital Rights Language (ODRL) Version 2.1 – Core Model. Final Specification, W3C ODRL Community Group. http://www.w3.org/community/odrl/model/2.1/
[McRoberts15] M. McRoberts, V. Rodríguez Doncel. Open Digital Rights Language (ODRL) Version 2.1 – Ontology. Final Specification, W3C ODRL Community Group http://www.w3.org/ns/odrl/2/
[Rodriguez15] Rodríguez, E., Delgado, J., Boch, L., & Rodríguez-Doncel, V. (2015). Media Contract Formalization Using a Standardized Contract Expression Language. IEEE multimedia, 22(2), 64-74.
[Steyskal15] Steyskal, S., &Kirrane, S. (2015). If you can't enforce it, contract it: Enforceability in Policy-Driven (Linked) Data Markets. In SEMANTiCS (Posters & Demos) (pp. 63-66).
[Steyskal15b] Steyskal, S., &Polleres, A. (2015, August). Towards formal semantics for ODRL policies. In International Symposium on Rules and Rule Markup Languages for the Semantic Web (pp. 360-375). Springer International Publishing.
[Rodriguez16] Rodríguez-Doncel, V., Delgado, J., Llorente, S., Rodríguez, E., & Boch, L. (2016). Overview of the MPEG-21 Media Contract Ontology. Semantic Web, 7(3), 311-332.
[DeVos19] De Vos, M., Kirrane, S., Padget, J., & Satoh, K. (2019, September). ODRL policy modelling and compliance checking. In International Joint Conference on Rules and Reasoning (pp. 36-51). Springer, Cham.
[Kebede20] Kebede, M. G., Sileno, G., & van Engers, T. (2020). A critical reflection on ODRL. Springer Lecture Notes Artificial Intelligence, AICOL2021, to appear.
[Kim20] Kim, J. M., & Chung, H. S. (2020). ODRL Ontology Extention Model and Prototype Design for the Specification of the Rights to use Digital Contents. Journal of Convergence for Information Technology, 10(1), 13-21.
[Esteves21] Esteves, B., Pandit, H. J., & Rodrıguez-Doncel, V. ODRL Profile for Expressing Consent through Granular Access Control Policies in Solid. To appear, proc. of the Workshop on Consent Management in Online Services, Networks and Things (COnSeNT) - co-located with IEEE European Symposium on Security and Privacy (EuroS&P 2021)
[Fornara19] N. Fornara and M. Colombetti. Using Semantic Web Technologies and Production Rules for Reasoning on Obligations, Permissions, and Prohibitions. AI Communications, vol. 32, no. 4, pp. 319-334, 2019. [Holzer07] Holzer, M., Katzenbeisser, S., Schallhart, C.: Towards a formal semantics for ODRL. Proceedings of the 1st International workshop on ODRL, pp. 137-148, (link) (2004) This specification owes much to the previous description in the wiki.

Introduction

Document Conventions

Terminology

ODRL Evaluator

State of the World

Evaluation Request

Evaluation Report

Semantics of Policies

General semantics of Rules

Semantics of Permissions

Evaluation of Constraints

Evaluation of Refinements

Evaluation of Conditions (Duties)

Example of a conditioned permission

Example of a permission whose condition has constraints

Semantics of Prohibitions

Evaluation of a prohibition with constraints

Sematics of Obligations

Evaluation of an obligation without constraints

References