Open Data Infrastructure
Context Graphs for Policy Simulation
How context graphs can simulate policy changes across agents, users, data products, lineage paths, and access decisions.
Changing an access rule without simulation is a great way to discover your dependency graph through complaints.
Policy changes need simulation
DataHub and OpenMetadata document policy and role concepts. Open Policy Agent gives teams a policy engine and Rego language for structured decisions. W3C PROV and OpenLineage provide models for provenance and lineage.
A context graph can connect those pieces before policy changes land. It can show which agents, users, data products, tables, dashboards, tools, and lineage paths would be affected by a new rule.
The graph shows blast radius
Policy simulation should answer more than who loses access. It should answer which workflows change, which agents lose context, which data products need owner review, which denials are expected, and which consumers need release notes.
That simulation is only possible when metadata relationships are current enough to trust. A stale context graph turns simulation into fiction.
Core idea: Policy simulation is impact analysis for governed context.
The ODI simulation model
Open Data Infrastructure should keep policy simulation close to catalogs, lineage, data products, and agent tools. The simulation does not replace enforcement. It makes enforcement changes safer to ship.
For adjacent context, read context graphs for data access decisions, context graphs for AI incident response, and policy enforcement in open systems.
What breaks first
- Policy changes are tested against sample requests but not real consumer relationships.
- Lineage shows data movement but not agent tool use.
- Owners approve policy changes without seeing affected downstream products.
- Simulation ignores denials, so expected access failures look like incidents after release.
Questions to ask
Ask which relationships feed the simulation, how fresh they are, and how results are reviewed. Ask whether simulations include users, agents, data products, policies, lineage paths, and denial reasons.
A policy change should be surprising only to the people who skipped the graph.
Sources to start with
These primary sources anchor the technical claims in this guide.
- DataHub access policies documentation
- OpenMetadata roles and policies documentation
- Open Policy Agent policy language documentation
- W3C PROV overview
- OpenLineage object model documentation
The graph lets policy teams see the blast radius before users feel it.