discontinued / server · Files

Inconsistent.html 8.91 KB
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 
<html xmlns="http://www.w3.org/1999/xhtml">
  <head>
    <meta name="generator" content=
    "HTML Tidy for Mac OS X (vers 31 October 2006 - Apple Inc. build 13), see www.w3.org" />
    <title>
      Inconsistent data -- Semantic Web design Issues
    </title>
    <link rel="Stylesheet" href="di.css" type="text/css" />
    <meta http-equiv="Content-Type" content="text/html" />
  </head>
  <body bgcolor="#DDFFDD" text="#000000">
    <address>
      Tim Berners-Lee<br />
      Date: 1998, last change: $Date: 2009/08/27 21:38:07 $<br />
      Status: personal view only. Editing status: first draft.
    </address>
    <p>
      <a href="./">Up to Design Issues</a>
    </p>
    <h3>
      Semantic Web
    </h3>
    <hr />
    <h2>
      Inconsistent data
    </h2>
    <p>
      What, many people ask, will happen when this huge mass of
      classical logic meets its first inconsistncy? Surely, once
      you have one staement that A and another somewhere on the web
      that not A, then doesn't the whole system fall apart? Surely,
      then you can deduce anything you want?
    </p>
    <p>
      This fear of course is quite valid - or would be if all
      assertions in the whole world were regarded as bing on equal
      footing. Some imagine that an RDF parser will simply search
      all XML documents on the web for any facts, and add them to a
      massive set of belived assertions. This is not how realisic
      systems will actually work.
    </p>
    <p>
      On the web, a fact may be asserted in an expression. That
      expression may be part fo a formula. The formula may ivolve
      negation, and may invove quotation. The whole formula is
      found by parsing some document . There is no a priori reason
      to believe any document on the web. The reason to believe a
      document will be found in some information (metadata) about
      the document. That metadata may be an endosement of the
      document - another RDF statement, which in turn was found
      another document, and so on.
    </p>
    <p>
      <em>[@@need picture here]</em>
    </p>
    <p>
      A real system may work backwards or forwards (or both). I
      would call working forwards a system which is given a
      configuartion page to work from which in turn points to other
      pages which in turn are used as valid data. I would call
      working backwards a system which, when looking for an answer
      to a query, looks at a gloal index to find any document at
      all which mentions a given term. It then searches thes
      documents turned up for answers to the query. Only when it
      has found an answer does t check back to see whether the data
      can be deriveded directly or indirectly from sources it has
      been set up to trust.
    </p>
    <p>
      Digital sgnature (see trust) of course adds a notion of
      secuirty to the whole process. The first step is that a
      document is not endorsed without giving the checksum it had
      when believed. The second step is to secify more powerful
      rules of the form
    </p>
    <blockquote>
      <p>
        "whatever any document says so long it is signed with key
        57832498437".
      </p>
    </blockquote>
    <p>
      In prcatice, particular authroities are trusted only for
      specific purposed. The semantic web must support this. You
      must be able to restrict the information believed along the
      lines of,
    </p>
    <blockquote>
      <p>
        "whatever any document says of the form xxxx is a meber of
        W3C so long as it is signed wiht key 32457934759432".
      </p>
    </blockquote>
    <p>
      for example
    </p>
    <blockquote>
      <p>
        "whatever any document says of the form "a is an employee
        of IBM" so long as it is signed by with key 3213123098129".
      </p>
    </blockquote>
    <h3>
      Limiting inference
    </h3>
    <p>
      There is a choice here, and I am not sure right now which
      appeals to me most. One is to say precicely,
    </p>
    <blockquote>
      <p>
        "whatever any document <em><strong>says</strong></em> of
        the form xxxx is a member of W3C so long as it is signed
        with key 32457934759432".
      </p>
    </blockquote>
    <p>
      The other is to say,
    </p>
    <blockquote>
      <p>
        "whatever is of form xxxx and <em><strong>can be
        inferred</strong></em> from information signed with key
        32457934759432"
      </p>
    </blockquote>
    <p>
      In the first case, we are making an arbitrary requirement for
      a statement to be phrased in a particular way. This seems
      unnecessarily bureaucratic, and more difficult to treat
      constently. Normally we like to be able to replace any set of
      forumlae with another set which can be deduced from it.
      However, in this case we have to preserve the actual form in
      case we need to match it against a pattern. This is very
      messy.
    </p>
    <p>
      In the second case, we fall prey to the inconsistency trap.
      Once any pair of conflicting statements can be deduced from
      information signed with a given key, then anything can be
      deduced from information signed with the key: the key is
      completely broken. Of course, only that key is broken, so a
      trust system can remove any reason it has to trust that key.
      However, the attacked system may not realize what has
      happened before it has been convinced that the sun rises in
      the west.
    </p>
    <p>
      Is there a way to limit the domain of trust in a key while
      allowing inmformation to be processed in a consistent way
      throughout the system? Yes - maybe - there are many. Each KR
      system which uses a limited logic does do in order (partly)
      to solve this problem. We just qulaify "can be inferred" be
      the type of inference rules which may be used. This means the
      generic proof engine eitehr has to work though a reified
      version of the rules or it has to know the sets - incorporate
      each proof engine. Maybe we only need one.
    </p>
    <h3>
      Expiry
    </h3>
    <blockquote>
      <p>
        Tortoise: What's the time, Achilles?
      </p>
      <p>
        Achilles: Five past ten, my friend. [They chat for a
        minute]
      </p>
      <p>
        Tortoise: What is the time, Achilles?
      </p>
      <p>
        Achilles: Six minutes past ten, Mr. Toroise.
      </p>
      <p>
        Tortoise: But Achilles, you just told me just a minute ago
        it was <strong>five</strong> minutes past ten. How can I
        ever believe you again?
      </p>
    </blockquote>
    <p>
      Time-varying information is one cause of apparent
      contradiction. People and documents change status. How does
      one base inference on information which may be out of date?
    </p>
    <p>
      One part of this is to put explicit or implcit expry dates on
      everything. Whenever a server sends resource to an HTTP
      client, it can give an expiry date. The client can track
      this, and ensure that all deductions from that document are
      cancelled when the date arrives, unless a more recent copy
      can be optained which says the same thing. In human language
      you might say "It is rainy" but on the semantic web that
      woudl be exported in a fully qualified way, more like "at Mon
      Jan 24 09:41:06 EST 2000 the measurement guage 5 at Dubin
      Airport read rain as having fallen in the last hour". (A
      fuzzy system would conclude "Dublin is wet" and a clasic
      logic system "at least once it rained at at least one place
      in Dublin"!)
    </p>
    <p>
      I understand [Lehrmann, SW meeting in DC] (sp?) that the KIF
      folks developed a complete vocabulary for time-variance.
    </p>
    <p>
      Another tchnique is to make any looseness which exists in the
      real system visible. Instead of saying
    </p>
    <blockquote>
      <p>
        Any employee of any member orgainzation of W3C may register
      </p>
    </blockquote>
    <p>
      you say formally to the registration engine
    </p>
    <blockquote>
      <p>
        Any person who was some time in the last 2 months an
        employy of an organization which was som etim ein the last
        2 montsh a W3C member may register.
      </p>
    </blockquote>
    <p>
      In other words, if an organization were to drop its
      membership, the system doesn't have to support propagating
      that information instantly.
    </p>
    <p>
      I think there will be time-aware reasoning systems, and
      time-unaware raesoning systems which are fed data with expiry
      dates and whose results are used within the intersection
      period of the validity periods of the incomming data. Indeed,
      time-aware systems may contain nested time-unaware systems,
      and probably vice-versa.
    </p>
    <hr />
    <p>
      <a href="Overview.html">Up to Design Issues</a>
    </p>
    <p>
      <a href="../People/Berners-Lee">Tim BL</a>
    </p>
  </body>
</html>