{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,5]],"date-time":"2026-02-05T09:41:08Z","timestamp":1770284468143,"version":"3.49.0"},"publisher-location":"Berlin, Heidelberg","reference-count":44,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540371878","type":"print"},{"value":"9783540371885","type":"electronic"}],"license":[{"start":{"date-parts":[[2006,1,1]],"date-time":"2006-01-01T00:00:00Z","timestamp":1136073600000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2006]]},"DOI":"10.1007\/11814771_51","type":"book-chapter","created":{"date-parts":[[2006,10,5]],"date-time":"2006-10-05T15:44:21Z","timestamp":1160063061000},"page":"632-646","source":"Crossref","is-referenced-by-count":75,"title":["Specifying and Reasoning About Dynamic Access-Control Policies"],"prefix":"10.1007","author":[{"given":"Daniel J.","family":"Dougherty","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kathi","family":"Fisler","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shriram","family":"Krishnamurthi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"51_CR1","volume-title":"Foundations of Databases","author":"S. Abiteboul","year":"1995","unstructured":"Abiteboul, S., Hull, R., Vianu, V.: Foundations of Databases. Addison-Wesley, Reading (1995)"},{"issue":"2","key":"51_CR2","doi-asserted-by":"publisher","first-page":"236","DOI":"10.1006\/jcss.2000.1708","volume":"61","author":"S. Abiteboul","year":"2000","unstructured":"Abiteboul, S., Vianu, V., Fordham, B.S., Yesha, Y.: Relational transducers for electronic commerce. Journal of Computer and System Sciences\u00a061(2), 236\u2013269 (2000)","journal-title":"Journal of Computer and System Sciences"},{"key":"51_CR3","doi-asserted-by":"crossref","unstructured":"Ahmed, T., Tripathi, A.R.: Static verification of security requirements in role based CSCW systems. In: Symposium on Access Control Models and Technologies, pp. 196\u2013203 (2003)","DOI":"10.1145\/775412.775438"},{"key":"51_CR4","doi-asserted-by":"crossref","unstructured":"Backes, M., Karjoth, G., Bagga, W., Schunter, M.: Efficient comparison of enterprise privacy policies. In: Symposium on Applied Computing, pp. 375\u2013382 (2004)","DOI":"10.1145\/967900.967983"},{"key":"51_CR5","unstructured":"Becker, M.Y., Sewell, P.: Cassandra: Flexible trust management, applied to electronic health records. In: IEEE Computer Security Foundations Workshop (2004)"},{"key":"51_CR6","unstructured":"Bell, D., LaPadula, L.J.: Secure computer systems: Mathematical foundations and model. Technical Report M74-244, The Mitre Corporation (1976)"},{"issue":"3","key":"51_CR7","doi-asserted-by":"publisher","first-page":"191","DOI":"10.1145\/501978.501979","volume":"4","author":"E. Bertino","year":"2001","unstructured":"Bertino, E., Bonatti, P.A., Ferrari, E.: TRBAC: A temporal role-based access control model. ACM Transactions on Information and Systems Security\u00a04(3), 191\u2013233 (2001)","journal-title":"ACM Transactions on Information and Systems Security"},{"key":"51_CR8","doi-asserted-by":"crossref","unstructured":"Bertino, E., Samarati, P., Jajodia, S.: Authorizations in relational database management systems. In: ACM Conference on Computer and Communications Security, pp. 130\u2013139 (1993)","DOI":"10.1145\/168588.168605"},{"issue":"1","key":"51_CR9","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/504909.504910","volume":"5","author":"P. Bonatti","year":"2002","unstructured":"Bonatti, P., di Vimercati, S.D.C., Samarati, P.: An algebra for composing access control policies. ACM Transactions on Information and Systems Security\u00a05(1), 1\u201335 (2002)","journal-title":"ACM Transactions on Information and Systems Security"},{"key":"51_CR10","unstructured":"Cosmadakis, S., Kanellakis, P.: Functional and inclusion dependencies: A graph theoretic approach. In: Kanellakis, P., Preparata, F. (eds.) Advances in Computing Research. Theory of Databases, vol.\u00a03, pp. 163\u2013185. JAI Press (1986)"},{"key":"51_CR11","doi-asserted-by":"crossref","unstructured":"Cousot, P., Cousot, R.: Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints. In: ACM Symposium on Principles of Programming Languages, pp. 238\u2013252 (1977)","DOI":"10.1145\/512950.512973"},{"key":"51_CR12","unstructured":"DeTreville, J.: Binder: a logic-based security language. In: IEEE Symposium on Security and Privacy, pp. 95\u2013103 (2002)"},{"key":"51_CR13","doi-asserted-by":"crossref","unstructured":"Deutsch, A., Sui, L., Vianu, V.: Specification and verification of data-driven web services. In: ACM Symposium on Principles of Database Systems, pp. 71\u201382 (2004)","DOI":"10.1145\/1055558.1055571"},{"key":"51_CR14","doi-asserted-by":"crossref","unstructured":"Fisler, K., Krishnamurthi, S., Meyerovich, L.A., Tschantz, M.C.: Verification and change-impact analysis of access-control policies. In: International Conference on Software Engineering, pp. 196\u2013205 (May 2005)","DOI":"10.1145\/1062455.1062502"},{"key":"51_CR15","first-page":"442","volume-title":"International Conference on Software Engineering","author":"M.F. Frias","year":"2005","unstructured":"Frias, M.F., Galeotti, J.P., Pombo, C.G.L., Aguirre, N.M.: DynAlloy: upgrading Alloy with actions. In: International Conference on Software Engineering, pp. 442\u2013451. ACM Press, New York (2005)"},{"issue":"3","key":"51_CR16","doi-asserted-by":"publisher","first-page":"431","DOI":"10.1145\/382780.382783","volume":"48","author":"G. Gottlob","year":"2001","unstructured":"Gottlob, G., Leone, N., Scarcello, F.: The complexity of acyclic conjunctive queries. J. ACM\u00a048(3), 431\u2013498 (2001)","journal-title":"J. ACM"},{"key":"51_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-30144-8_19","volume-title":"Information Security","author":"D.P. Guelev","year":"2004","unstructured":"Guelev, D.P., Ryan, M.D., Schobbens, P.-Y.: Model-checking access control policies. In: Zhang, K., Zheng, Y. (eds.) ISC 2004. LNCS, vol.\u00a03225, Springer, Heidelberg (2004)"},{"issue":"8","key":"51_CR18","doi-asserted-by":"publisher","first-page":"461","DOI":"10.1145\/360303.360333","volume":"19","author":"M.A. Harrison","year":"1976","unstructured":"Harrison, M.A., Ruzzo, W.L., Ullman, J.D.: Protection in operating systems. Communications of the ACM\u00a019(8), 461\u2013471 (1976)","journal-title":"Communications of the ACM"},{"key":"51_CR19","doi-asserted-by":"publisher","first-page":"85","DOI":"10.1016\/S0168-0072(00)00018-X","volume":"106","author":"I. Hodkinson","year":"2000","unstructured":"Hodkinson, I., Wolter, F., Zakharyaschev, M.: Decidable fragments of first-order temporal logics. Annals of Pure and Applied Logic\u00a0106, 85\u2013134 (2000)","journal-title":"Annals of Pure and Applied Logic"},{"key":"51_CR20","doi-asserted-by":"crossref","unstructured":"Hodkinson, I., Wolter, F., Zakharyaschev, M.: Decidable and undecidable fragments of first-order branching temporal logics. In: IEEE Symposium on Logic in Computer Science, pp. 393\u2013402 (2002)","DOI":"10.1109\/LICS.2002.1029847"},{"key":"51_CR21","unstructured":"Hughes, G., Bultan, T.: Automated verification of access control policies. Technical Report 2004-22, University of California, Santa Barbara (2004)"},{"key":"51_CR22","doi-asserted-by":"crossref","unstructured":"Jackson, D.: Automating first-order relational logic. In: ACM SIGSOFT International Symposium on the Foundations of Software Engineering (November 2000)","DOI":"10.1145\/355045.355063"},{"key":"51_CR23","doi-asserted-by":"crossref","unstructured":"Jim, T.: SD3: A trust management system with certified evaluation. In: IEEE Symposium on Security and Privacy, pp. 106\u2013115 (2001)","DOI":"10.1109\/SECPRI.2001.924291"},{"issue":"1","key":"51_CR24","doi-asserted-by":"publisher","first-page":"68","DOI":"10.1016\/S0022-0000(75)80050-X","volume":"11","author":"N.D. Jones","year":"1975","unstructured":"Jones, N.D.: Space-bounded reducibility among combinatorial problems. Journal of Computer and System Sciences\u00a011(1), 68\u201385 (1975)","journal-title":"Journal of Computer and System Sciences"},{"key":"51_CR25","doi-asserted-by":"crossref","unstructured":"Koch, M., Mancini, L.V., Parisi-Presicce, F.: Decidability of safety in graph-based models for access control. In: European Symposium on Research in Computer Security, pp. 299\u2013243 (2002)","DOI":"10.1007\/3-540-45853-0_14"},{"key":"51_CR26","doi-asserted-by":"crossref","unstructured":"Kolaczek, G.: Specification and verification of constraints in role based access control for enterprise security system. In: International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, pp. 190\u2013195 (2003)","DOI":"10.1109\/ENABL.2003.1231406"},{"key":"51_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"2","DOI":"10.1007\/3-540-36388-2_2","volume-title":"Practical Aspects of Declarative Languages","author":"S. Krishnamurthi","year":"2002","unstructured":"Krishnamurthi, S.: The Continue server. In: Dahl, V., Wadler, P. (eds.) PADL 2003. LNCS, vol.\u00a02562, pp. 2\u201316. Springer, Heidelberg (2002)"},{"issue":"1","key":"51_CR28","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1145\/775265.775268","volume":"8","author":"B.W. Lampson","year":"1974","unstructured":"Lampson, B.W.: Protection. ACM Operating Systems Review\u00a08(1), 18\u201324 (1974)","journal-title":"ACM Operating Systems Review"},{"issue":"1","key":"51_CR29","doi-asserted-by":"publisher","first-page":"128","DOI":"10.1145\/605434.605438","volume":"6","author":"N. Li","year":"2003","unstructured":"Li, N., Grosof, B.N., Feigenbaum, J.: Delegation logic: A logic-based approach to distributed authorization. ACM Transactions on Information and Systems Security\u00a06(1), 128\u2013171 (2003)","journal-title":"ACM Transactions on Information and Systems Security"},{"key":"51_CR30","doi-asserted-by":"crossref","unstructured":"Li, N., Mitchell, J.C.: Datalog with constraints: A foundation for trust management languages. In: Symposium on the Practical Aspects of Declarative Languages, pp. 58\u201373 (2003)","DOI":"10.1007\/3-540-36388-2_6"},{"issue":"3","key":"51_CR31","doi-asserted-by":"publisher","first-page":"474","DOI":"10.1145\/1066100.1066103","volume":"52","author":"N. Li","year":"2005","unstructured":"Li, N., Mitchell, J.C., Winsborough, W.H.: Beyond proof-of-compliance: Security analysis in trust management. Journal of the ACM\u00a052(3), 474\u2013514 (2005)","journal-title":"Journal of the ACM"},{"key":"51_CR32","doi-asserted-by":"crossref","unstructured":"Li, N., Tripunitara, M.V.: Security analysis in role-based access control. In: ACM Symposium on Access Control Models and Technologies (2004)","DOI":"10.1145\/990036.990058"},{"key":"51_CR33","unstructured":"Moses, T.: eXtensible Access Control Markup Language (XACML) version 1.0. Technical report, OASIS (February 2003)"},{"key":"51_CR34","doi-asserted-by":"crossref","unstructured":"Pimlott, A., Kiselyov, O.: Soutei, a logic-based trust-management system. In: Functional and Logic Programming, pp. 130\u2013145 (2006)","DOI":"10.1007\/11737414_10"},{"key":"51_CR35","doi-asserted-by":"crossref","first-page":"659","DOI":"10.1016\/B978-0-934613-40-8.50021-X","volume-title":"Foundations of Deductive Databases and Logic Programming","author":"Y. Sagiv","year":"1988","unstructured":"Sagiv, Y.: Optimizing datalog programs. In: Foundations of Deductive Databases and Logic Programming, pp. 659\u2013698. Morgan Kaufmann, San Francisco (1988)"},{"issue":"2","key":"51_CR36","doi-asserted-by":"publisher","first-page":"404","DOI":"10.1145\/42282.42286","volume":"35","author":"R. Sandhu","year":"1988","unstructured":"Sandhu, R.: The schematic protection model: its definition and analysis for acyclic attenuating systems. Journal of the ACM\u00a035(2), 404\u2013432 (1988)","journal-title":"Journal of the ACM"},{"issue":"2","key":"51_CR37","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"R.S. Sandhu","year":"1996","unstructured":"Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. IEEE Computer\u00a029(2), 38\u201347 (1996)","journal-title":"IEEE Computer"},{"key":"51_CR38","unstructured":"Sarna-Starosta, B., Stoller, S.D.: Policy analysis for security-enhanced Linux. In: Proceedings of the 2004 Workshop on Issues in the Theory of Security, pp. 1\u201312 (April 2004)"},{"key":"51_CR39","doi-asserted-by":"crossref","unstructured":"Schaad, A., Moffett, J.D.: A lightweight approach to specification and analysis of role-based access control extensions. In: Symposium on Access Control Models and Technologies, pp. 13\u201322 (2002)","DOI":"10.1145\/507711.507714"},{"key":"51_CR40","doi-asserted-by":"crossref","unstructured":"Shmueli, O.: Decidability and expressiveness aspects of logic queries. In: ACM Symposium on Principles of Database Systems, pp. 237\u2013249 (1987)","DOI":"10.1145\/28659.28685"},{"key":"51_CR41","first-page":"92","volume-title":"ACM Symposium on Principles of Database Systems","author":"M. Spielmann","year":"2000","unstructured":"Spielmann, M.: Verification of relational transducers for electronic commerce. In: ACM Symposium on Principles of Database Systems, pp. 92\u2013103. ACM Press, New York (2000)"},{"key":"51_CR42","first-page":"137","volume-title":"Symposium on the Theory of Computing","author":"M.Y. Vardi","year":"1982","unstructured":"Vardi, M.Y.: The complexity of relational query languages (extended abstract). In: Symposium on the Theory of Computing, pp. 137\u2013146. ACM Press, New York (1982)"},{"key":"51_CR43","doi-asserted-by":"crossref","unstructured":"Weissman, V., Halpern, J.: Using first-order logic to reason about policies. In: IEEE Computer Security Foundations Workshop, pp. 187\u2013201 (2003)","DOI":"10.1109\/CSFW.2003.1212713"},{"key":"51_CR44","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"204","DOI":"10.1007\/3-540-36575-3_15","volume-title":"Programming Languages and Systems","author":"E. Yahav","year":"2003","unstructured":"Yahav, E., Reps, T., Sagiv, M., Wilhelm, R.: Verifying temporal heap properties specified via evolution logic. In: Degano, P. (ed.) ESOP 2003 and ETAPS 2003. LNCS, vol.\u00a02618, pp. 204\u2013222. Springer, Heidelberg (2003)"}],"container-title":["Lecture Notes in Computer Science","Automated Reasoning"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11814771_51","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,1,11]],"date-time":"2025-01-11T06:09:14Z","timestamp":1736575754000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11814771_51"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006]]},"ISBN":["9783540371878","9783540371885"],"references-count":44,"URL":"https:\/\/doi.org\/10.1007\/11814771_51","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2006]]}}}