{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,5]],"date-time":"2024-09-05T16:08:46Z","timestamp":1725552526620},"publisher-location":"Berlin, Heidelberg","reference-count":17,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540311423"},{"type":"electronic","value":"9783540324379"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2006]]},"DOI":"10.1007\/11610113_17","type":"book-chapter","created":{"date-parts":[[2005,12,14]],"date-time":"2005-12-14T05:23:32Z","timestamp":1134537812000},"page":"176-188","source":"Crossref","is-referenced-by-count":4,"title":["An Aspect-Oriented Approach to Declarative Access Control for Web Applications"],"prefix":"10.1007","author":[{"given":"Kung","family":"Chen","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ching-Wei","family":"Lin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"17_CR1","unstructured":"The Apache Struts Web Application Framework, \n                    \n                      http:\/\/struts.apache.org\/"},{"key":"17_CR2","unstructured":"Beznosov, K., Deng, Y.: Engineering Application-level Access Control in Distributed Systems. In: Handbook of Software Engineering and Knowledge Engineering, vol.\u00a01 (2002)"},{"key":"17_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"156","DOI":"10.1007\/978-3-540-31979-5_14","volume-title":"Information Security Practice and Experience","author":"K. Chen","year":"2005","unstructured":"Chen, K., Huang, C.H.: A Practical Aspect Framework for Enforcing Fine-Grained Access Control in Web Applications. In: Deng, R.H., Bao, F., Pang, H., Zhou, J. (eds.) ISPEC 2005. LNCS, vol.\u00a03439, pp. 156\u2013167. Springer, Heidelberg (2005)"},{"key":"17_CR4","unstructured":"De Win, B., Piessens, F., Joosen, W., Verhanneman, T.: On the importance of the separation-of-concerns principle in secure software engineering. In: Workshop on the Application of Engineering Principles to System Security Design (2002)"},{"key":"17_CR5","first-page":"125","volume-title":"Advances in Network and Distributed Systems Security","author":"B. Win De","year":"2001","unstructured":"De Win, B., Vanhaute, B., De Decker, B.: Security Through Aspect-Oriented Programming. In: Advances in Network and Distributed Systems Security, pp. 125\u2013138. Kluwer Academic, Dordrecht (2001)"},{"key":"17_CR6","unstructured":"Fonseca, C.A.: Extending JAAS for Class Instance-Level Authorization. IBM DeveloperWorks (April 2002), \n                    \n                      http:\/\/www-106.ibm.com\/developerworks\/java\/library\/j-jaas\/"},{"key":"17_CR7","unstructured":"Gamma, Helm, Johnson, Vlissides: Design Patterns. Addison-Wesley, Reading (1995)"},{"key":"17_CR8","doi-asserted-by":"crossref","unstructured":"Goodwin, R., Goh, S.F., Wu, F.Y.: Instance-level access control for business-to-business electronic commerce. IBM System Journal\u00a041(2) (2002)","DOI":"10.1147\/sj.412.0303"},{"key":"17_CR9","doi-asserted-by":"crossref","unstructured":"Hilsdale, E., Hugunin, J.: Advice Weaving in AspectJ. In: Proceedings of the 3rd International Conference on Aspect-Oriented Software Development, Lancaster, pp. 26\u201335 (2004)","DOI":"10.1145\/976270.976276"},{"key":"17_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"220","DOI":"10.1007\/BFb0053381","volume-title":"ECOOP \u201997 - Object-Oriented Programming","author":"G. Kiczales","year":"1997","unstructured":"Kiczales, G., Lamping, J., Menhdhekar, A., Maeda, C., Lopes, C., Loingtier, J.-M., Irwin, J.: Aspect-Oriented Programming. In: Aksit, M., Matsuoka, S. (eds.) ECOOP 1997. LNCS, vol.\u00a01241, pp. 220\u2013242. Springer, Heidelberg (1997)"},{"issue":"10","key":"17_CR11","doi-asserted-by":"publisher","first-page":"59","DOI":"10.1145\/383845.383858","volume":"44","author":"G. Kiczales","year":"2001","unstructured":"Kiczales, G., Hilsdale, E., Hugunin, J., Kersten, M., Palm, J., Griswold, W.G.: Getting Started with AspectJ. Communications of ACM\u00a044(10), 59\u201365 (2001)","journal-title":"Communications of ACM"},{"key":"17_CR12","unstructured":"Lin, C.W.: An Aspect-Oriented Approach to Fine-Grained Access Control for Web Applications. M.S. Thesis, National Chengchi University (July 2005)"},{"key":"17_CR13","unstructured":"Open Web Application Security Project: The Top Ten Most Critical Web Application Security Vulnerabilities, \n                    \n                      http:\/\/www.owasp.org\/documentation\/topten"},{"key":"17_CR14","doi-asserted-by":"crossref","unstructured":"Probst, S., Kueng, J.: The Need for Declarative Security Mechanisms. In: IEEE Proceedings of the 30th EUROMICRO Conference (EUROMICRO 2004) (August 2004)","DOI":"10.1109\/EURMIC.2004.1333417"},{"issue":"2","key":"17_CR15","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"R. Sandhu","year":"1996","unstructured":"Sandhu, R., Coyne, E., Feinstein, H., Youman, C.: Role-Based Access Control Models. IEEE Computer\u00a029(2), 38\u201347 (1996)","journal-title":"IEEE Computer"},{"key":"17_CR16","unstructured":"Sun Microsystems, Java Authentication and Authorization Service (JAAS), \n                    \n                      http:\/\/java.sun.com\/products\/jaas\/index.jsp"},{"key":"17_CR17","unstructured":"Sun Microsystem, Java 2 Platform, Enterprise Edition (J2EE), \n                    \n                      http:\/\/java.sun.com\/j2ee\/"}],"container-title":["Lecture Notes in Computer Science","Frontiers of WWW Research and Development - APWeb 2006"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11610113_17.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,4,27]],"date-time":"2021-04-27T03:07:26Z","timestamp":1619492846000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11610113_17"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006]]},"ISBN":["9783540311423","9783540324379"],"references-count":17,"URL":"https:\/\/doi.org\/10.1007\/11610113_17","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2006]]}}}