{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,25]],"date-time":"2025-03-25T14:19:17Z","timestamp":1742912357610,"version":"3.40.3"},"publisher-location":"Cham","reference-count":23,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030266356"},{"type":"electronic","value":"9783030266363"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-26636-3_5","type":"book-chapter","created":{"date-parts":[[2019,7,19]],"date-time":"2019-07-19T12:03:36Z","timestamp":1563537816000},"page":"91-115","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Architectural Considerations for a Data Access Marketplace Based upon API Management"],"prefix":"10.1007","author":[{"given":"Uwe","family":"Hohenstein","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sonja","family":"Zillner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andreas","family":"Biesdorf","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,7,20]]},"reference":[{"issue":"3","key":"5_CR1","doi-asserted-by":"publisher","first-page":"299","DOI":"10.1016\/j.cose.2012.01.004","volume":"31","author":"J Abramov","year":"2012","unstructured":"Abramov, J., Anson, O., Dahan, M., et al.: A methodology for integrating access control policies within database development. Comput. Secur. 31(3), 299\u2013314 (2012)","journal-title":"Comput. Secur."},{"issue":"12","key":"5_CR2","doi-asserted-by":"crossref","first-page":"1482","DOI":"10.14778\/3402755.3402801","volume":"4","author":"M Balazinska","year":"2011","unstructured":"Balazinska, M., Howe, B., Suciu, D.: Data markets in the cloud: an opportunity for the fatabase community. Proc. VLDB Endow. 4(12), 1482\u20131485 (2011)","journal-title":"Proc. VLDB Endow."},{"key":"5_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-70567-3_1","volume-title":"Data and Applications Security XXII","author":"S Barker","year":"2008","unstructured":"Barker, S.: Dynamic meta-level access control in SQL. In: Atluri, V. (ed.) DBSec 2008. LNCS, vol. 5094, pp. 1\u201316. Springer, Heidelberg (2008). https:\/\/doi.org\/10.1007\/978-3-540-70567-3_1"},{"issue":"2","key":"5_CR4","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1145\/306686.306687","volume":"17","author":"E Bertino","year":"1999","unstructured":"Bertino, E., Jajodia, S., Samarati, P.: A flexible authorization mechanism for relational data management systems. ACM Trans. Inf. Syst. 17(2), 101\u2013140 (1999)","journal-title":"ACM Trans. Inf. Syst."},{"key":"5_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"136","DOI":"10.1007\/978-3-642-19718-5_8","volume-title":"Programming Languages and Systems","author":"L Caires","year":"2011","unstructured":"Caires, L., P\u00e9rez, J.A., Seco, J.C., Vieira, H.T., Ferr\u00e3o, L.: Type-based access control in data-centric systems. In: Barthe, G. (ed.) ESOP 2011. LNCS, vol. 6602, pp. 136\u2013155. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-19718-5_8"},{"key":"5_CR6","doi-asserted-by":"crossref","unstructured":"Chaudhuri, S., Dutta, T., Sudarshan, S.: Fine grained authorization through predicated grants. In: 23rd International Conference on Data Engineering (ICDE), pp. 1174\u20131183. IEEE (2007)","DOI":"10.1109\/ICDE.2007.368976"},{"key":"5_CR7","unstructured":"Chlipala, A., Impredicative, L.: Static checking of dynamically-varying security policies in database-backed applications. In: The USENIX Conference on Operating Systems Design and Implementation, pp. 105\u2013118 (2010)"},{"key":"5_CR8","doi-asserted-by":"crossref","unstructured":"Corcoran, B., Swamy, N., Hicks, M.: Cross-tier, label-based security enforcement for web applications. In: Proceedings of the 2009 ACM SIGMOD International Conference on Management of Data, pp. 269\u2013282. ACM (2009)","DOI":"10.1145\/1559845.1559875"},{"key":"5_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"173","DOI":"10.1007\/978-3-642-03013-0_9","volume-title":"ECOOP 2009 \u2013 Object-Oriented Programming","author":"J Fischer","year":"2009","unstructured":"Fischer, J., Marino, D., Majumdar, R., Millstein, T.: Fine-grained access control with object-sensitive roles. In: Drossopoulou, S. (ed.) ECOOP 2009. LNCS, vol. 5653, pp. 173\u2013194. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1007\/978-3-642-03013-0_9"},{"issue":"8","key":"5_CR10","doi-asserted-by":"publisher","first-page":"748","DOI":"10.1016\/j.cose.2011.08.002","volume":"30","author":"L Fuchs","year":"2011","unstructured":"Fuchs, L., Pernul, G., Sandhu, R.: Roles in information security \u2013 a survey and classification of the research area. Comput. Secur. 30(8), 748\u2013769 (2011)","journal-title":"Comput. Secur."},{"key":"5_CR11","doi-asserted-by":"crossref","unstructured":"Hohenstein, U., Zillner, S., Biesdorf, A.: Architectural considerations for a data access marketplace. In: Proceedings of the 7th International Conference on Data Science, Technology and Applications (DATA 2018), Porto (Portugal), pp. 323\u2013333 (2018)","DOI":"10.5220\/0006855303220333"},{"issue":"4","key":"5_CR12","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2445566.2445570","volume":"15","author":"K Jayaraman","year":"2013","unstructured":"Jayaraman, K., Tripunitara, M., Ganesh, V., et al.: Mohawk: abstraction-refinement and bound-estimation for verifying access control policies. ACM Trans. Inf. Syst. Secur. (TISSEC) 15(4), 1\u201328 (2013). Article No. 18","journal-title":"ACM Trans. Inf. Syst. Secur. (TISSEC)"},{"key":"5_CR13","doi-asserted-by":"publisher","first-page":"108","DOI":"10.1016\/B978-012088469-8.50013-9","volume-title":"Proceedings 2004 VLDB Conference","author":"Kristen LeFevre","year":"2004","unstructured":"LeFevre, K., Agrawal, R., Ercegovac, V., et al.: Limiting disclosure in hippocratic databases. In: Proceedings of the 13th VLDB, pp. 108\u2013119 (2004)"},{"key":"5_CR14","unstructured":"Oracle: Using Oracle Virtual Private Database to Control Data Access. https:\/\/docs.oracle.com\/cd\/B28359_01\/network.111\/b28531\/vpd.htm#DBSEG007"},{"issue":"1","key":"5_CR15","first-page":"1","volume":"2","author":"O Pereira","year":"2014","unstructured":"Pereira, O., Regateiro, D., Aguiar, R.: Distributed and typed role-based access control mechanisms driven by CRUD expressions. Int. J. Comput. Sci. Theor. Appl. 2(1), 1\u201311 (2014)","journal-title":"Int. J. Comput. Sci. Theor. Appl."},{"key":"5_CR16","doi-asserted-by":"crossref","unstructured":"Rizvi, S., Mendelzon, A., Sudarshan, S., Roy, P.: Extending query rewriting techniques for fine-grained access control. In: ACM SIGMOD Conference, pp. 551\u2013562 (2004)","DOI":"10.1145\/1007568.1007631"},{"key":"5_CR17","unstructured":"Rjaibi, W.: Data security best practices: a practical guide to implementing row and column access control. https:\/\/www.ibm.com\/developerworks\/community\/wikis\/home?lang=en#!\/wiki\/Wc9a068d7f6a6_4434_aece_0d297ea80ab1\/page\/A%20practical%20guide%20to%20implementing%20row%20and%20column%20access%20control"},{"key":"5_CR18","doi-asserted-by":"crossref","unstructured":"Roichman, A., Gudes, E.: Fine-grained access control to web databases. In: Proceedings of the 12th ACM Symposium on Access Control Models and Technologies, pp. 31\u201340. ACM (2007)","DOI":"10.1145\/1266840.1266846"},{"key":"5_CR19","unstructured":"Roman, D., Paniagua, J., Tarasova, T., et al.: proDataMarket: a data marketplace for monetizing linked data. In: Demo Paper at 16th International Semantic Web Conference (ISWC 2017), Vienna (2017)"},{"key":"5_CR20","first-page":"1","volume":"39","author":"D Sonntag","year":"2015","unstructured":"Sonntag, D., Tresp, V., Zillner, S., Cavallaro, A., et al.: The clinical data intelligence project. Informatik-Spektrum 39, 1\u201311 (2015)","journal-title":"Informatik-Spektrum"},{"key":"5_CR21","unstructured":"Wang, Q., Yu, T., Li, N., et al.: On the correctness criteria of fine-grained access control in relational databases. In: Proceedings of the 33rd International Conference on Very Large Data Bases, pp. 555\u2013566 (2007)"},{"key":"5_CR22","doi-asserted-by":"crossref","unstructured":"Zarnett, J., Tripunitara, M., Lam, P.: Role-based access control (RBAC) in Java via proxy objects using annotations. In: Proceedings of the 15th ACM Symposium on Access Control Models and Technologies, pp. 79\u201388. ACM (2010)","DOI":"10.1145\/1809842.1809858"},{"key":"5_CR23","unstructured":"XACML: XACML \u2013 eXtensible Access Control Markup Language. http:\/\/www.oasisopen.org\/committees\/tchome.php?wgabbrev=xacml"}],"container-title":["Communications in Computer and Information Science","Data Management Technologies and Applications"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-26636-3_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,1,13]],"date-time":"2021-01-13T12:43:40Z","timestamp":1610541820000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-26636-3_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030266356","9783030266363"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-26636-3_5","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"20 July 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}