VAULT: Verified Access Control for LLM-Based Knowledge Graph Querying

Stäbler, Maximilian; Müller, Tobias; Köster, Frank; Langdon, Chris

Home // eKNOW 2025, The Seventeenth International Conference on Information, Process, and Knowledge Management // View article

VAULT: Verified Access Control for LLM-Based Knowledge Graph Querying

Authors:
Maximilian Stäbler
Tobias Müller
Frank Köster
Chris Langdon

Keywords: Keywords-Knowledge Graphs; Verified Roled-Based Access; LLM; Semantic Interoperability.

Abstract:
The exponential growth of unstructured textual data in enterprise environments has made automated Knowledge graph generation essential for efficient information management. While recent advances in natural language processing have enabled automated knowledge extraction, organizations face two critical challenges: maintaining domain specificity in Knowledge representation and ensuring secure, role-based access to sensitive information. VAULT (Verified Access Control for LLM-Based Knowledge Graph Querying) presents a novel framework that combines ontology-driven knowledge extraction with dynamic access control mechanisms. The framework introduces three key innovations: (1) a configurable domain-driven node structure that enforces domain-specific knowledge organization through semantic validation, (2) a multi-tiered access control mechanism that implements both document-level restrictions and node-level visibility patterns, and (3) an LLM-powered inference engine that dynamically filters knowledge graph traversal based on user authorization levels. We implement our approach using a prototype system that demonstrates the automated conversion of natural language text into structured knowledge graphs while maintaining security constraints. Our experimental Evaluation encompasses comprehensive testing across 16 different open-source LLMs, analyzing their performance under varying Access control conditions and authorization levels. The results demonstrate the framework’s effectiveness in maintaining Information security while preserving query response quality across different access tiers. The framework’s adaptability makes it particularly valuable for industries handling sensitive information, such as healthcare, finance, and intellectual property management, where both domain specificity and information security are paramount. This paper contributes to the field by bridging the gap between generic knowledge graph generation and domain-specific requirements while providing empirical evidence for the effectiveness of multi-level access control in LLM-based knowledge systems.

Pages: 21 to 29

Copyright: Copyright (c) IARIA, 2025

Publication date: May 18, 2025

Published in: conference

ISSN: 2308-4375

ISBN: 978-1-68558-272-2

Location: Nice, France

Dates: from May 18, 2025 to May 22, 2025