{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T10:09:15Z","timestamp":1742983755311,"version":"3.40.3"},"publisher-location":"Cham","reference-count":27,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030127855"},{"type":"electronic","value":"9783030127862"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-12786-2_13","type":"book-chapter","created":{"date-parts":[[2019,1,31]],"date-time":"2019-01-31T00:31:20Z","timestamp":1548894680000},"page":"213-232","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Run-Time Monitoring of Data-Handling Violations"],"prefix":"10.1007","author":[{"given":"Jassim","family":"Happa","sequence":"first","affiliation":[]},{"given":"Nick","family":"Moffat","sequence":"additional","affiliation":[]},{"given":"Michael","family":"Goldsmith","sequence":"additional","affiliation":[]},{"given":"Sadie","family":"Creese","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2019,1,31]]},"reference":[{"key":"13_CR1","doi-asserted-by":"crossref","unstructured":"Barth, A., Datta, A., Mitchell, J.C., Nissenbaum, H.: Privacy and contextual integrity: framework and applications. In: 2006 IEEE Symposium on Security and Privacy, 15-p. IEEE (2006)","DOI":"10.1109\/SP.2006.32"},{"key":"13_CR2","volume-title":"and Thomas Hildebrandt","author":"D Basin","year":"2018","unstructured":"Basin, D., Debois, S.: and Thomas Hildebrandt. Compliance under the GDPR, On purpose and by necessity (2018)"},{"issue":"3","key":"13_CR3","doi-asserted-by":"publisher","first-page":"262","DOI":"10.1007\/s10703-015-0222-7","volume":"46","author":"D Basin","year":"2015","unstructured":"Basin, D., Klaedtke, F., Marinovic, S., Z\u0103linescu, E.: Monitoring of temporal first-order properties with aggregations. Form. Methods Syst. Des. 46(3), 262\u2013285 (2015)","journal-title":"Form. Methods Syst. Des."},{"key":"13_CR4","unstructured":"British Parliament. Data Protection Act. London Stationery Office (1998)"},{"key":"13_CR5","doi-asserted-by":"crossref","unstructured":"Brooks, S., Brooks, S., Garcia, M., Lefkovitz, N., Lightman, S., Nadeau, E.: An Introduction to Privacy Engineering and Risk Management in Federal Systems. US Department of Commerce, National Institute of Standards and Technology (2017)","DOI":"10.6028\/NIST.IR.8062"},{"key":"13_CR6","unstructured":"Cavoukian, A.: Privacy by design. 7 foundational principles (2011). \n                      www.ipc.on.ca\/wp-content\/uploads\/Resources\/7foundationalprinciples.pdf"},{"key":"13_CR7","unstructured":"Cavoukian, A., et al.: Privacy by design documentation for software engineers version 1.0. (PbD-SE). Organization for the Advancement of Structured Information Standards (OASIS), Burlington (2014)"},{"key":"13_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"131","DOI":"10.1007\/978-3-319-08867-9_9","volume-title":"Computer Aided Verification","author":"O Chowdhury","year":"2014","unstructured":"Chowdhury, O., Jia, L., Garg, D., Datta, A.: Temporal mode-checking for runtime monitoring of privacy policies. In: Biere, A., Bloem, R. (eds.) CAV 2014. LNCS, vol. 8559, pp. 131\u2013149. Springer, Cham (2014). \n                      https:\/\/doi.org\/10.1007\/978-3-319-08867-9_9"},{"key":"13_CR9","doi-asserted-by":"crossref","unstructured":"Daniel, F., et al.: Business compliance governance in service-oriented architectures. In: International Conference on Advanced Information Networking and Applications, AINA 2009, pp. 113\u2013120. IEEE (2009)","DOI":"10.1109\/AINA.2009.112"},{"key":"13_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-642-25560-1_1","volume-title":"Information Systems Security","author":"A Datta","year":"2011","unstructured":"Datta, A., et al.: Understanding and protecting privacy: formal semantics and principled audit mechanisms. In: Jajodia, S., Mazumdar, C. (eds.) ICISS 2011. LNCS, vol. 7093, pp. 1\u201327. Springer, Heidelberg (2011). \n                      https:\/\/doi.org\/10.1007\/978-3-642-25560-1_1"},{"key":"13_CR11","unstructured":"EnCoRe project partners. Encore: Ensuring consent and revocation (2008). \n                      http:\/\/www.hpl.hp.com\/breweb\/encoreproject\/index.html"},{"key":"13_CR12","unstructured":"European Commission. General Data Protection Regulation (2018). \n                      https:\/\/ec.europa.eu\/commission\/priorities\/justice-and-fundamental-rights\/data-protection\/2018-reform-eu-data-protection-rules_en"},{"issue":"8","key":"13_CR13","doi-asserted-by":"publisher","first-page":"861","DOI":"10.1016\/j.patrec.2005.10.010","volume":"27","author":"T Fawcett","year":"2006","unstructured":"Fawcett, T.: An introduction to ROC analysis. Pattern Recognit. Lett. 27(8), 861\u2013874 (2006)","journal-title":"Pattern Recognit. Lett."},{"key":"13_CR14","doi-asserted-by":"crossref","unstructured":"Fisk, G., Ardi, C., Pickett, N., Heidemann, J., Fisk, M., Papadopoulos, C.: Privacy principles for sharing cyber security data. In: 2015 IEEE Security and Privacy Workshops (SPW), pp. 193\u2013197. IEEE (2015)","DOI":"10.1109\/SPW.2015.23"},{"key":"13_CR15","doi-asserted-by":"crossref","unstructured":"Garg, D., Jia, L., Datta, A.: Policy auditing over incomplete logs: theory, implementation and applications. In: Proceedings of the 18th ACM Conference on Computer and Communications Security, pp. 151\u2013162. ACM (2011)","DOI":"10.1145\/2046707.2046726"},{"issue":"2","key":"13_CR16","doi-asserted-by":"publisher","first-page":"159","DOI":"10.1080\/13600869.2013.801589","volume":"28","author":"Bert-Jaap Koops","year":"2013","unstructured":"Koops, B.-J., Leenes, R.: Privacy regulation cannot be hardcoded. A critical comment on the \u2018privacy by design\u2019 provision in data-protection law. International Review of Law, Computers & Technology 28(2), 159\u2013171 (2014)","journal-title":"International Review of Law, Computers & Technology"},{"issue":"2","key":"13_CR17","doi-asserted-by":"publisher","first-page":"335","DOI":"10.1147\/sj.462.0335","volume":"46","author":"Y Liu","year":"2007","unstructured":"Liu, Y., Muller, S., Ke, X.: A static compliance-checking framework for business process models. IBM Syst. J. 46(2), 335\u2013361 (2007)","journal-title":"IBM Syst. J."},{"key":"13_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-540-88808-6_2","volume-title":"Rule Representation, Interchange and Reasoning on the Web","author":"D Luckham","year":"2008","unstructured":"Luckham, D.: The power of events: an introduction to complex event processing in distributed enterprise systems. In: Bassiliades, N., Governatori, G., Paschke, A. (eds.) RuleML 2008. LNCS, vol. 5321, p. 3. Springer, Heidelberg (2008). \n                      https:\/\/doi.org\/10.1007\/978-3-540-88808-6_2"},{"key":"13_CR19","first-page":"19","volume":"3","author":"LB Movius","year":"2009","unstructured":"Movius, L.B., Krup, N.: US and EU privacy policy: comparison of regulatory approaches. Int. J. Commun. 3, 19 (2009)","journal-title":"Int. J. Commun."},{"key":"13_CR20","doi-asserted-by":"crossref","unstructured":"Mulo, E., Zdun, U., Dustdar, S.: Monitoring web service event trails for business compliance. In: 2009 IEEE International Conference on Service-oriented Computing and Applications (SOCA), pp. 1\u20138. IEEE (2009)","DOI":"10.1109\/SOCA.2009.5410273"},{"issue":"2","key":"13_CR21","doi-asserted-by":"publisher","first-page":"48","DOI":"10.1109\/64.395352","volume":"10","author":"DE O\u2019Leary","year":"1995","unstructured":"O\u2019Leary, D.E., Bonorris, S., Klosgen, W., Khaw, Y.-T., Lee, H.-Y., Ziarko, W.: Some privacy issues in knowledge discovery: the OECD personal privacy guidelines. IEEE Expert 10(2), 48\u201359 (1995)","journal-title":"IEEE Expert"},{"key":"13_CR22","unstructured":"Papanikolaou, N., Creese, S., Goldsmith, M., Mont, M.C., Pearson, S.: Encore: towards a holistic approach to privacy. In: Proceedings of the 2010 International Conference on Security and Cryptography (SECRYPT), pp. 1\u20136. IEEE (2010)"},{"key":"13_CR23","unstructured":"Roscoe, B.: The theory and practice of concurrency (1998)"},{"key":"13_CR24","unstructured":"Sarbanes-Oxley Act. Sarbanes-oxley act of 2002. Public Law (107\u2013204) (2002)"},{"key":"13_CR25","unstructured":"Soto-Mendoza, V., Serrano-Alvarado, P., Desmontils, E., Garcia-Macias, J.A.: Policies composition based on data usage context. In: Sixth International Workshop on Consuming Linked Data (COLD 2015) at ISWC (2015)"},{"issue":"4","key":"13_CR26","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1145\/332159.332161","volume":"2","author":"A Sundaram","year":"1996","unstructured":"Sundaram, A.: An introduction to intrusion detection. Crossroads 2(4), 3\u20137 (1996)","journal-title":"Crossroads"},{"key":"13_CR27","doi-asserted-by":"crossref","unstructured":"Tran, H., et al.: An end-to-end framework for business compliance in process-driven SOAs. In: 2010 12th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC), pp. 407\u2013414. IEEE (2010)","DOI":"10.1109\/SYNASC.2010.52"}],"container-title":["Lecture Notes in Computer Science","Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-12786-2_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,20]],"date-time":"2019-05-20T06:55:58Z","timestamp":1558335358000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-12786-2_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030127855","9783030127862"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-12786-2_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"31 January 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"CyberICPS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Workshop on the Security of Industrial Control Systems and Cyber-Physical Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Barcelona","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Spain","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 September 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"7 September 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"4","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"cyberics2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.ds.unipi.gr\/cybericps2018\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"15","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"8","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"53% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}