{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,24]],"date-time":"2025-08-24T01:36:46Z","timestamp":1755999406209},"publisher-location":"Cham","reference-count":17,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030453701"},{"type":"electronic","value":"9783030453718"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-45371-8_13","type":"book-chapter","created":{"date-parts":[[2020,4,16]],"date-time":"2020-04-16T23:04:51Z","timestamp":1587078291000},"page":"207-224","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Command Dependencies in Heuristic Safety Analysis of Access Control Models"],"prefix":"10.1007","author":[{"given":"Peter","family":"Amthor","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Rabe","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,4,17]]},"reference":[{"key":"13_CR1","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"270","DOI":"10.1007\/978-3-319-30222-5_13","volume-title":"E-Business and Telecommunications","author":"P Amthor","year":"2016","unstructured":"Amthor, P.: The entity labeling pattern for modeling operating systems access control. In: Obaidat, M.S., Lorenz, P. (eds.) ICETE 2015. CCIS, vol. 585, pp. 270\u2013292. Springer, Cham (2016). \nhttps:\/\/doi.org\/10.1007\/978-3-319-30222-5_13"},{"key":"13_CR2","doi-asserted-by":"publisher","unstructured":"Amthor, P.: Efficient heuristic safety analysis of core-based security policies. In: Proceedings of the 14th International Conference on Security and Cryptography. SECRYPT 2017, pp. 384\u2013392 (2017). \nhttps:\/\/doi.org\/10.5220\/0006477103840392","DOI":"10.5220\/0006477103840392"},{"key":"13_CR3","unstructured":"Amthor, P.: Aspect-Oriented Security Engineering. Cuvillier Verlag, G\u00f6ttingen (2019), ISBN 978-3-7369-9980-0"},{"key":"13_CR4","doi-asserted-by":"crossref","unstructured":"Amthor, P., K\u00fchnhauser, W.E., P\u00f6lck, A.: Model-based safety analysis of SELinux security policies. In: Samarati, P., Foresti, S., Hu, J., Livraga, G. (eds.) Proceedings of 5th International Conference on Network and System Security, pp. 208\u2013215. IEEE (2011)","DOI":"10.1109\/ICNSS.2011.6060002"},{"key":"13_CR5","unstructured":"Amthor, P., K\u00fchnhauser, W.E., P\u00f6lck, A.: Heuristic safety analysis of access control models. In: Proceedings of the 18th ACM Symposium on Access Control Models and Technologies, SACMAT 2013, pp. 137\u2013148. ACM, New York (2013). \nhttp:\/\/doi.acm.org\/10.1145\/2462410.2462413"},{"key":"13_CR6","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1016\/j.cose.2014.01.002","volume":"42","author":"P Amthor","year":"2014","unstructured":"Amthor, P., K\u00fchnhauser, W.E., P\u00f6lck, A.: WorSE: a workbench for model-based security engineering. Comput. Secur. 42, 40\u201355 (2014). \nhttps:\/\/doi.org\/10.1016\/j.cose.2014.01.002\n\n. \nhttp:\/\/www.sciencedirect.com\/science\/article\/pii\/S0167404814000066","journal-title":"Comput. Secur."},{"key":"13_CR7","unstructured":"Fischer, A., K\u00fchnhauser, W.E.: Efficient algorithmic safety analysis of HRU security models. In: Katsikas, S., Samarati, P. (eds.) Proceedings of the International Conference on Security and Cryptography (SECRYPT 2010), pp. 49\u201358. SciTePress (2010)"},{"key":"13_CR8","doi-asserted-by":"crossref","unstructured":"Harrison, M.A., Ruzzo, W.L., Ullman, J.D.: Protection in operating systems. Commun. ACM 19(8), 461\u2013471 (1976). \nhttp:\/\/doi.acm.org\/10.1145\/360303.360333","DOI":"10.1145\/360303.360333"},{"key":"13_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"379","DOI":"10.1007\/978-3-642-25560-1_27","volume-title":"Information Systems Security","author":"WE K\u00fchnhauser","year":"2011","unstructured":"K\u00fchnhauser, W.E., P\u00f6lck, A.: Towards access control model engineering. In: Jajodia, S., Mazumdar, C. (eds.) ICISS 2011. LNCS, vol. 7093, pp. 379\u2013382. Springer, Heidelberg (2011). \nhttps:\/\/doi.org\/10.1007\/978-3-642-25560-1_27"},{"issue":"3","key":"13_CR10","doi-asserted-by":"publisher","first-page":"455","DOI":"10.1145\/322017.322025","volume":"24","author":"RJ Lipton","year":"1977","unstructured":"Lipton, R.J., Snyder, L.: A linear time algorithm for deciding subject security. J. ACM 24(3), 455\u2013464 (1977)","journal-title":"J. ACM"},{"key":"13_CR11","unstructured":"Masoumzadeh, A.: Security analysis of relationship-based access control policies. In: Proceedings of the 8th ACM Conference on Data and Application Security and Privacy, CODASPY 2018, pp. 186\u2013195. ACM, New York (2018). \nhttp:\/\/doi.acm.org\/10.1145\/3176258.3176323"},{"key":"13_CR12","unstructured":"P\u00f6lck, A.: Small TCBs of policy-controlled operating systems. Universit\u00e4tsverlag Ilmenau, May 2014"},{"issue":"5","key":"13_CR13","doi-asserted-by":"publisher","first-page":"582","DOI":"10.1109\/TDSC.2015.2427834","volume":"13","author":"PV Rajkumar","year":"2016","unstructured":"Rajkumar, P.V., Sandhu, R.: Safety decidability for pre-authorization usage control with finite attribute domains. IEEE Trans. Dependable Secure Comput. 13(5), 582\u2013590 (2016). \nhttps:\/\/doi.org\/10.1109\/TDSC.2015.2427834","journal-title":"IEEE Trans. Dependable Secure Comput."},{"key":"13_CR14","unstructured":"Sandhu, R.S.: The typed access matrix model. In: Proceedings of the 1992 IEEE Symposium on Security and Privacy, SP 1992, pp. 122\u2013136. IEEE Computer Society, Washington, DC (1992). \nhttp:\/\/dl.acm.org\/citation.cfm?id=882488.884182"},{"issue":"2\u20133","key":"13_CR15","doi-asserted-by":"publisher","first-page":"148","DOI":"10.1016\/j.cose.2010.08.002","volume":"30","author":"SD Stoller","year":"2011","unstructured":"Stoller, S.D., Yang, P., Gofman, M., Ramakrishnan, C.R.: Symbolic reachability analysis for parameterized administrative role based access control. Comput. Secur. 30(2\u20133), 148\u2013164 (2011)","journal-title":"Comput. Secur."},{"issue":"2","key":"13_CR16","doi-asserted-by":"publisher","first-page":"231","DOI":"10.3233\/JCS-2007-15202","volume":"15","author":"MV Tripunitara","year":"2007","unstructured":"Tripunitara, M.V., Li, N.: A theory for comparing the expressive power of access control models. J. Comput. Secur. 15(2), 231\u2013272 (2007). \nhttp:\/\/dl.acm.org\/citation.cfm?id=1370659.1370662","journal-title":"J. Comput. Secur."},{"issue":"1","key":"13_CR17","doi-asserted-by":"publisher","first-page":"28","DOI":"10.1109\/TDSC.2012.77","volume":"10","author":"MV Tripunitara","year":"2013","unstructured":"Tripunitara, M.V., Li, N.: The foundational work of Harrison-Ruzzo-Ullman revisited. IEEE Trans. Dependable Secur. Comput. 10(1), 28\u201339 (2013). \nhttps:\/\/doi.org\/10.1109\/TDSC.2012.77","journal-title":"IEEE Trans. Dependable Secur. Comput."}],"container-title":["Lecture Notes in Computer Science","Foundations and Practice of Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-45371-8_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,16]],"date-time":"2020-04-16T23:16:36Z","timestamp":1587078996000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-45371-8_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030453701","9783030453718"],"references-count":17,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-45371-8_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"17 April 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"FPS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Symposium on Foundations and Practice of Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Toulouse","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"5 November 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"7 November 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"fps2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/fps2019.sciencesconf.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"50","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"19","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"9","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"38% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2.5","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3.5","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}